Supporting client authentication with private_key_jwt

[glefebvr1]

Is your feature request related to a problem? Please describe. We have an Openid connect provider which only supports private_key_jwt as way to authenticate the client. On the market, there does not seem to be any Wordpress plugin supporting this method. Moreover, this method seems to be the more secured one, since the "secret" is only stored on the client side.

Describe alternatives you've considered There do not seem to be any Wordpress plugin supporting this client authentication method Unfortunately, I'm no PHP developer and I'm only a real beginner regarding Openid connect protocol. So proposing a PR would be over my skills. What I could offer is testing an implementation. I could also offer french translation of the plugin.

[timnolte]

@glefebvr1 can you provide details about which Identity Provider you are using that only has this support? Thanks!

[glefebvr1]

Hello @timnolte, Thanks for having a look at this demand ! It is an identity provider for universities and higher education in Switzerland. Up to now, they were offering only Shibboleth auth. But they started recently to offer Openid connect: https://www.switch.ch/edu-id/docs/services/openid-connect/ Best.