public async Task ValidAudienceAllowsSuccessfulAuthentication() {
// Arrange
var server = CreateResourceServer(options => {
options.Audiences.Add("http://www.fabrikam.com/");
options.ClientId = "Fabrikam";
options.ClientSecret = "B4657E03-D619";
});
var client = server.CreateClient();
var request = new HttpRequestMessage(HttpMethod.Get, "/");
request.Headers.Authorization = new AuthenticationHeaderValue(
"Bearer", "valid-token-with-multiple-audiences");
// Act
var response = await client.SendAsync(request);
// Assert
Assert.Equal(HttpStatusCode.OK, response.StatusCode);
Assert.Equal("Fabrikam", await response.Content.ReadAsStringAsync());
}