May be related to the change made in Action required: Atlassian Connect vulnerability allows bypass of app qsh verification via context JWTs - #4 by remie
Try to add @contextJWT annotation to all internal APIs
1 Like