Using RS* ID Token signature algorithm without a RSA key causes ID Token to be returned as "null"
Concerned version
Version: 2.0.7
Summary
When RS256 (or similar) is used in a RP configuration, but no RSA key was generated in the global OIDC config the returned ID token is returned with a value of "null".
Fix
Return a proper HTTP 500 error instead of a bogus response.