Question about how NRF authorizes other network functions

Hi!I’m recently working on NRF, and I have a question for your team. NRF has a function to authorize token to other network functions, which is implemented based on oauth 2.0. But I don’t find any code in the free5gc program that decrypts the access-token of other network functions. Can you help me?

As far as I can tell, this has not been implemented yet (please correct me if I’m wrong, but in that case please also tell me how to enable it).
It is important to note that the NRF does not authenticate the client correctly (i.e. via mTLS) yet. So anyone with access to the NRF can get OAuth tokens in the name of any network function.