Bug Fixes
-
Don't set empty JWK signing algorithms in
Client::new()(#104). This fixes a bug introduced in 2.5.0 (#87) that caused clients constructed viaClient::new()not to allow any signature algorithms for ID tokens and user info JWTs unless they manually set the allowed algorithms on theIdTokenVerifier. This patch restores the original behavior of defaulting to accepting onlyRS256for clients constructed viaClient::new(), as indicated in the spec.Clients constructed via
Client::from_provider_metadata()will continue to receive the signing algorithms specified in the provider metadata during OpenID Connect Discovery (as introduced in 2.5.0 via #87).