Support jti caching to prevent client assertion reuse

[tekul]

As described in the client authentication section of the spec, client assertion JWTs should only be used once. A caching/checking function is needed to make sure the same token identifier isn't submitted more than once.