The Auth microservice's /api/oauth/check_token endpoint is used to identify if the token is valid. The API documentation states the URL parameter should be access_token, but the underlying API requires the URL parameter use the word "token". This doesn't conform to the other endpoints that require "access_token"
We need to determine if we change the documentation or change the endpoint to accept the word "access_token" like we do with the other token related endpoints.
Here's the label in the documentation: https://github.com/OpenLMIS/openlmis-auth/blob/master/src/main/resources/api-definition.yaml#L475
The API seems to rely on Spring Security for the naming, so it may be really difficult to change.