Simplify public key registration with OIDC client registration

[sberyozkin]

I've been planning to do it for a while, this minor PR makes it easier to deal with the advanced cases where the client metadata must include the public key in JWK format, the test code we have for it is good for tests, but is unlikely to work for users in general, but it was the only way to do it since the ClientMetadata builder API that I originally added was pretty limited in what it could do.

So I added two jwks methods to the builder to supply PublicKey directly, defaulting to the use=sig - which I expect to be the only case anyway as we don't deal at the OIDC level with OIDC providers supplying encryption keys in the public JWK set.

I also added one jwks method accepting a Map when users need to have more JWK properties like key id (it does not have to be crypto-safe but only unique in a given key set), and other properties.

In the updated test example, I also dropped the client_uri property which implies, in the dynamic client reg case, that in this case it can be for example Quarkus that supplies this page... OIDC provider may allocate it itself in some cases too. It is not important for the test in any case.

[michalvavrik]

LGTM, I agree this will help to users.

[michalvavrik]

You can drop keycloakUrl as the client URI is not set anymore, but it's a test so probably not wort fixing.

[sberyozkin]

Sure, let me do it

[quarkus-bot]

Status for workflow Quarkus CI

This is the status report for running Quarkus CI on commit fbb7056.

✅ The latest workflow run for the pull request has completed successfully.

It should be safe to merge provided you have a look at the other checks in the summary.

You can consult the Develocity build scans.