- Get public keys from OIDC well-known URL, validate JWT signature
- Add optional endpoint to regenerate and return a users's nexus password to act as a token
- Automate testing users and nexus endpoints in integration test
- Add helm tests, or at least remove the built-in ones