[Bug] System.InvalidOperationException in AddJwtBearer because missing configuration when reading well-known configuration with objects

[tehho]

Which version of Microsoft.IdentityModel are you using?
8.0.0

Where is the issue?

• M.IM.JsonWebTokens
• M.IM.KeyVaultExtensions
• M.IM.Logging
• M.IM.ManagedKeyVaultSecurityKey
• M.IM.Protocols
• M.IM.Protocols.OpenIdConnect
• M.IM.Protocols.SignedHttpRequest
• M.IM.Protocols.WsFederation
• M.IM.TestExtensions
• M.IM.Tokens
• M.IM.Tokens.Saml
• M.IM.Validators
• M.IM.Xml
• S.IM.Tokens.Jwt
• Other (please describe)

Is this a new or an existing app?
I have upgraded to a new version of Microsoft.AspNetCore.Authentication.JwtBearer 8.0.7 in a .Net 8.0 upgrade and with Microsoft.IdentityModel.Protocols.OpenIdConnect 8.0.0 it does not work.
Specifying version 7.6.3 in csproj works perfectly fine.

Expected behavior
Parse objects in well-known configuration correctly.

Actual behavior
Missing configuration because reader encounter JsonTokenType.EndObject before actual end.

System.InvalidOperationException: Cannot redirect to the authorization endpoint, the configuration may be missing or invalid.

Possible solution
Ignore objects in well-known that are not supported by OpenIdConnectConfiguration

Additional context / logs / screenshots / links to code
Related to #2407

[GeoK]

@tehho This issue should be addressed in Microsoft.IdentityModel.Protocols.OpenIdConnect 8.0 with #2491. Can you please provide a repro?

[brentschmaltz]

@tehho can you please provide metadata that will exibit this issue?

[attilah]

@GeoK I think this is the same issue I found when using Identity Server, I have a repro in the referenced issue and exact details about the package incompatibility that's causing this: DuendeSoftware/Support#1391