feat: add well-known jwks.json endpoint

server/handlers/openid_config.go

@@ -1,8 +1,6 @@
 package handlers
 
 import (
-	"strings"
-
 	"github.com/gin-gonic/gin"
 
 	"github.com/authorizerdev/authorizer/server/constants"
@@ -13,11 +11,6 @@ import (
 // OpenIDConfigurationHandler handler for open-id configurations
 func OpenIDConfigurationHandler() gin.HandlerFunc {
 	return func(c *gin.Context) {
-		if strings.Contains(envstore.EnvInMemoryStoreObj.GetStringStoreEnvVariable(constants.EnvKeyJwtType), "HS") {
-			c.JSON(400, gin.H{"error": "openid not supported for HSA algorithm"})
-			return
-		}
-
 		issuer := utils.GetHost(c)
 		jwtType := envstore.EnvInMemoryStoreObj.GetStringStoreEnvVariable(constants.EnvKeyJwtType)
 
@@ -26,7 +19,7 @@ func OpenIDConfigurationHandler() gin.HandlerFunc {
 			"authorization_endpoint":                issuer + "/authorize",
 			"token_endpoint":                        issuer + "/oauth/token",
 			"userinfo_endpoint":                     issuer + "/userinfo",
-			"jwks_uri":                              issuer + "/jwks.json",
+			"jwks_uri":                              issuer + "/.well-known/jwks.json",
 			"response_types_supported":              []string{"code", "token", "id_token", "code token", "code id_token", "token id_token", "code token id_token"},
 			"scopes_supported":                      []string{"openid", "email", "profile", "email_verified", "given_name", "family_name", "nick_name", "picture"},
 			"response_modes_supported":              []string{"query", "fragment", "form_post"},