[BUG]: OpenId specs not adhered

[brezinajn]

What happened?

I'm trying to neable OpendID integration with Manyfold. But unfortunately on OpenID login Manyfold complains that:

Could not authenticate you from OpenIDConnect because "Id token signing alg values supported can't be blank".

In .well-known/openid-configuration cosmos returns "id_token_signing_alg_values_supported": null,

What should have happened?

Based on OpenID specs

id_token_signing_alg_values_supported
REQUIRED. JSON array containing a list of the JWS signing algorithms (alg values) supported by the OP for the ID Token to encode the Claims in a JWT [JWT]. The algorithm RS256 MUST be included. The value none MAY be supported but MUST NOT be used unless the Response Type used returns no ID Token from the Authorization Endpoint (such as when using the Authorization Code Flow).

The null value for id_token_signing_alg_values_supported is incorrect and should be replaced with at least ["RS256"]

How to reproduce the bug?

1. Selfhost Manyfold
2. Enable OpenID integration
3. Try to login with OpenID

Relevant log output

No response

Other details

No response

System details

• OS: Ubuntu
• Cosmos Version: 0.16.3