Using JWKS with v6

[akellens]

To start, let me thank you again for this library.

I run into the following issue:

• I need to integrate with an OIDC that uses private_key_jwt
• They require a JWKS with a separate key to sign and a separate key to encrypt
• If I am not mistaken, I can only pass along a single CryptoKey to client creation (I am using the discovery functionality)

Do I only need to pass along one of the two keys? Or can I pass along the JWKS as a whole?
I am afraid that the error messages I get are quite cryptic, so any pointers in the right direction would be tremendously appreciated.

[panva]

private_key_jwt is not encrypted, only signed, which is why you pass only a single private key for its signing needs.

Other than that, this question is rather cryptic too so without further context, that's all i can offer.