No key found in JWKS data after OP key rotation
Concerned version
Version: %2.0.14
Summary
When using LemonLDAP::NG as an OIDC client, oidcOPMetaDataOptionsJWKSTimeout does not work correctly
Expected scenario:
- After OIDC key rotation on OP, LemonLDAP should fail for oidcOPMetaDataOptionsJWKSTimeout seconds and then fetch the updated JWKS
Actual scenario:
- refreshJWKSdata is only called by Auth::OpenIDConnect::init()
Possible fixes
Refresh JWKS data in verifyJWTSignature when kid
is not found