Add more attributes on the OpenID JWKS endpoints (alg, x5c, x5t)
Summary
Add some missing attributes on the OpenID JWKS endpoint :
-
alg
Algorithm Parameter -
x5c
509 Certificate Chain Parameter -
x5t
X.509 Certificate SHA-1 Thumbprint Parameter
I take example on the Auth0 endpoint.
This can cause some app like NetBird to not work properly with LemonLDAP. (Especially the x5c
)
Design proposition
Follow the RFC7515.