diff --git a/ibexa/commerce/5.0/config/packages/security.yaml b/ibexa/commerce/5.0/config/packages/security.yaml
index 0cb6afa1..fd1b7047 100644
--- a/ibexa/commerce/5.0/config/packages/security.yaml
+++ b/ibexa/commerce/5.0/config/packages/security.yaml
@@ -89,10 +89,10 @@ security:
 
         # Uncomment the rules below to enable JSON Web Token (JWT) authentication for REST and/or GraphQL
         #ibexa_jwt_rest:
-        #    request_matcher: Ibexa\Rest\Security\AuthorizationHeaderRESTRequestMatcher
-        #    provider: ibexa
+        #    request_matcher: Ibexa\Rest\Security\JWTTokenCreationRESTRequestMatcher
         #    user_checker: Ibexa\Core\MVC\Symfony\Security\UserChecker
         #    stateless: true
+        #    provider: ibexa
         #    json_login:
         #        check_path: ibexa.rest.create_token
         #        username_path: JWTInput.username
@@ -100,6 +100,13 @@ security:
         #        success_handler: lexik_jwt_authentication.handler.authentication_success
         #        failure_handler: lexik_jwt_authentication.handler.authentication_failure
 
+        #ibexa_jwt_rest.api:
+        #    request_matcher: Ibexa\Rest\Security\AuthorizationHeaderRESTRequestMatcher
+        #    user_checker: Ibexa\Core\MVC\Symfony\Security\UserChecker
+        #    provider: ibexa
+        #    stateless: true
+        #    jwt: ~
+
         #ibexa_jwt_graphql:
         #    request_matcher: Ibexa\GraphQL\Security\NonAdminGraphQLRequestMatcher
         #    provider: ibexa
diff --git a/ibexa/experience/5.0/config/packages/security.yaml b/ibexa/experience/5.0/config/packages/security.yaml
index ef1de294..aae4504b 100644
--- a/ibexa/experience/5.0/config/packages/security.yaml
+++ b/ibexa/experience/5.0/config/packages/security.yaml
@@ -77,10 +77,10 @@ security:
 
         # Uncomment the rules below to enable JSON Web Token (JWT) authentication for REST and/or GraphQL
         #ibexa_jwt_rest:
-        #    request_matcher: Ibexa\Rest\Security\AuthorizationHeaderRESTRequestMatcher
-        #    provider: ibexa
+        #    request_matcher: Ibexa\Rest\Security\JWTTokenCreationRESTRequestMatcher
         #    user_checker: Ibexa\Core\MVC\Symfony\Security\UserChecker
         #    stateless: true
+        #    provider: ibexa
         #    json_login:
         #        check_path: ibexa.rest.create_token
         #        username_path: JWTInput.username
@@ -88,6 +88,13 @@ security:
         #        success_handler: lexik_jwt_authentication.handler.authentication_success
         #        failure_handler: lexik_jwt_authentication.handler.authentication_failure
 
+        #ibexa_jwt_rest.api:
+        #    request_matcher: Ibexa\Rest\Security\AuthorizationHeaderRESTRequestMatcher
+        #    user_checker: Ibexa\Core\MVC\Symfony\Security\UserChecker
+        #    provider: ibexa
+        #    stateless: true
+        #    jwt: ~
+
         #ibexa_jwt_graphql:
         #    request_matcher: Ibexa\GraphQL\Security\NonAdminGraphQLRequestMatcher
         #    provider: ibexa
diff --git a/ibexa/headless/5.0/config/packages/security.yaml b/ibexa/headless/5.0/config/packages/security.yaml
index ef1de294..aae4504b 100644
--- a/ibexa/headless/5.0/config/packages/security.yaml
+++ b/ibexa/headless/5.0/config/packages/security.yaml
@@ -77,10 +77,10 @@ security:
 
         # Uncomment the rules below to enable JSON Web Token (JWT) authentication for REST and/or GraphQL
         #ibexa_jwt_rest:
-        #    request_matcher: Ibexa\Rest\Security\AuthorizationHeaderRESTRequestMatcher
-        #    provider: ibexa
+        #    request_matcher: Ibexa\Rest\Security\JWTTokenCreationRESTRequestMatcher
         #    user_checker: Ibexa\Core\MVC\Symfony\Security\UserChecker
         #    stateless: true
+        #    provider: ibexa
         #    json_login:
         #        check_path: ibexa.rest.create_token
         #        username_path: JWTInput.username
@@ -88,6 +88,13 @@ security:
         #        success_handler: lexik_jwt_authentication.handler.authentication_success
         #        failure_handler: lexik_jwt_authentication.handler.authentication_failure
 
+        #ibexa_jwt_rest.api:
+        #    request_matcher: Ibexa\Rest\Security\AuthorizationHeaderRESTRequestMatcher
+        #    user_checker: Ibexa\Core\MVC\Symfony\Security\UserChecker
+        #    provider: ibexa
+        #    stateless: true
+        #    jwt: ~
+
         #ibexa_jwt_graphql:
         #    request_matcher: Ibexa\GraphQL\Security\NonAdminGraphQLRequestMatcher
         #    provider: ibexa
diff --git a/ibexa/oss/5.0/config/packages/security.yaml b/ibexa/oss/5.0/config/packages/security.yaml
index 579fce3c..0c788dbe 100644
--- a/ibexa/oss/5.0/config/packages/security.yaml
+++ b/ibexa/oss/5.0/config/packages/security.yaml
@@ -55,10 +55,10 @@ security:
 
         # Uncomment the rules below to enable JSON Web Token (JWT) authentication for REST and/or GraphQL
         #ibexa_jwt_rest:
-        #    request_matcher: Ibexa\Rest\Security\AuthorizationHeaderRESTRequestMatcher
-        #    provider: ibexa
+        #    request_matcher: Ibexa\Rest\Security\JWTTokenCreationRESTRequestMatcher
         #    user_checker: Ibexa\Core\MVC\Symfony\Security\UserChecker
         #    stateless: true
+        #    provider: ibexa
         #    json_login:
         #        check_path: ibexa.rest.create_token
         #        username_path: JWTInput.username
@@ -66,6 +66,13 @@ security:
         #        success_handler: lexik_jwt_authentication.handler.authentication_success
         #        failure_handler: lexik_jwt_authentication.handler.authentication_failure
 
+        #ibexa_jwt_rest.api:
+        #    request_matcher: Ibexa\Rest\Security\AuthorizationHeaderRESTRequestMatcher
+        #    user_checker: Ibexa\Core\MVC\Symfony\Security\UserChecker
+        #    provider: ibexa
+        #    stateless: true
+        #    jwt: ~
+
         #ibexa_jwt_graphql:
         #    request_matcher: Ibexa\GraphQL\Security\NonAdminGraphQLRequestMatcher
         #    provider: ibexa