feat(oidc): jwt response for introspection

[james-d-elliott]

This implements the standard for JWT encoded and signed responses from the introspection endpoint. This has been implemented as per the IETF draft https://datatracker.ietf.org/doc/html/draft-ietf-oauth-jwt-introspection-response and as it is a draft (it is also an expired draft) so it should be noted that this implementation may be removed or changed without any regard for breaking changes. While this factor points in the direction of this never receiving ratification the IANA has accepted registration of the metadata parameters for this specification which points to the fact that it probably will.

[authelia]

Artifacts

These changes are published for testing on Buildkite, DockerHub and GitHub Container Registry.

Docker Container

• docker pull authelia/authelia:feat-jwt-response-for-introspection
• docker pull ghcr.io/authelia/authelia:feat-jwt-response-for-introspection

[netlify]

✅ Deploy Preview for authelia-staging ready!

Name	Link
🔨 Latest commit	8c794cf
🔍 Latest deploy log	https://app.netlify.com/sites/authelia-staging/deploys/64e978569a32c2000762aaa3
😎 Deploy Preview	https://deploy-preview-5840--authelia-staging.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify site configuration.

[codecov]

Codecov Report

Merging #5840 (bc7b0aa) into master (8d196b7) will increase coverage by 0.47%.
The diff coverage is 73.74%.

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #5840      +/-   ##
==========================================
+ Coverage   73.03%   73.51%   +0.47%     
==========================================
  Files         280      281       +1     
  Lines       23742    24056     +314     
  Branches      443      443              
==========================================
+ Hits        17341    17685     +344     
+ Misses       5657     5630      -27     
+ Partials      744      741       -3     

Flag	Coverage Δ
backend	74.67% <73.74%> (+0.49%)	⬆️
frontend	58.27% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

Files Changed	Coverage Δ
internal/handlers/handler_oauth_introspection.go	0.00% <0.00%> (ø)
internal/handlers/handler_oidc_userinfo.go	0.00% <0.00%> (ø)
internal/oidc/types.go	100.00% <ø> (ø)
internal/oidc/util.go	98.87% <98.86%> (-0.02%)	⬇️
...rnal/configuration/validator/identity_providers.go	94.43% <100.00%> (+0.24%)	⬆️
internal/handlers/handler_oidc_authorization.go	23.45% <100.00%> (+0.95%)	⬆️
internal/model/oidc.go	95.92% <100.00%> (+54.80%)	⬆️
internal/oidc/client.go	100.00% <100.00%> (ø)
internal/oidc/discovery.go	100.00% <100.00%> (ø)
internal/oidc/handler_introspection.go	100.00% <100.00%> (ø)

[nightah]

Just a couple of nits and a question.

[nightah]

Does this cause a rendering issue with the OpenAPI spec?