valid audience token
If you are validating access tokens,
you should verify that the aud (audience) claim equals the
audience that is configured for your Authorization Server
in the Okta Developer Console.
For example, if your Authorization Server audience is set to
MyAwesomeApi, add this to the validation parameters:
ValidateAudience = true,
ValidAudience = "MyAwesomeApi",