Support for Multiple JWT Algos

[indiealexh]

At the moment JWT support is only for HS256

Support should also be added for:

ES256 -> 512
HS256 -> 512
RS256 -> 512

The most important of these being RS256 as this is the OIDC compliant algo.

This would add support for many authentication servers, including the Free KeyCloak authentication server.

[chevalleyc]

Uploaded a fix on v1.3.0 now supporting multiple signatures as follows:

Supported Signature Algorithm

    NONE "none"
    HS256 "HS256"
    HS384 "HS384"
    HS512 "HS512"
    RS256 "RS256"
    RS384 "RS384"
    RS512 "RS512"
    ES256 "ES256"
    ES384 "ES384"
    ES512 "ES512"
    PS256 "PS256"
    PS384 "PS384"
    PS512 "PS512"

Configuration

By default, the signature algorithm is HS256

To configure other algorithm, an entry in services.properties should be created as

server.jwt.algorithm=<algorithm name>

For example:

server.jwt.algorithm=RS256