feat: disable consumer pull transfers if key settings are missing

[ndr-brt]

What this PR changes/adds

Add settings check to TransferDataPlaneCoreExtension, if the ones related to the private/public keys are missing, then the "consumer-pull" transfer won't be enabled.

Why it does that

avoid weird exceptions when settings are missing

Further notes

• added a check also in the JwtGenerationService to avoid null pointer exceptions there in the case the key is not available.

Linked Issue(s)

Closes #3810

Please be sure to take a look at the contributing guidelines and our etiquette for pull requests.

[paullatzelsperger]

suggestion: I would use Ed25519 keys wherever possible, as they seem to emerge as the new quasi-standard. also, they are much faster to generate than RSA keys:
with Nimbus (this is the one we'd need here):

JWK ed25519Key = new OctetKeyPairGenerator(Curve.Ed25519).generate();

with plain Java:

KeyPair kp = KeyPairGenerator.getInstance("Ed25519").generateKeyPair();

using the BouncyCastle provider:

KeyPair kp = KeyPairGenerator.getInstance("Ed25519", new BouncyCastleProvider()).generateKeyPair();

[ndr-brt]

with the first one I get a Export to java.security.PrivateKey not supported, the second one tells me that the algorithm is not supported...
to be honest I didn't change the code here, just moved the method at the bottom, if you're ok with it I would leave it as it is

[paullatzelsperger]

yeah it's fine. we can do that in a housekeeping task somewhere down the road.

Just FYI: the Nimbus one probably fails, because the module doesn't have the Tink library on the (runtime) classpath.

[wolf4ood]

LGTM just a minor nit on logging

[wolf4ood]

The logging i think it should be on the else branch

[ndr-brt]

woa, you're right 😅