JWT Support

[keilw]

There are feature requests in Jakarta Security around JWT, but as mentioned, the Jakarta-consuming Microprofile JWT RBAC is not consumable by Jakarta Security or other specs at least on the API/Spec level.

Also while providing CDI wiring, MP JWT does not standardize decoding or encoding JWT similar to e.g. Spring Security Oauth2 JWT or
JJWT.

Beside that unlike Spring and others MP JWT also does not cover the JOSE Header as of now.

Could:

• JsonWebToken (or Jwt)
• JwtDecoder (or JwtParser)
• JwtEncoder (or JwtGenerator/Builder)
• Claims
• Headers

be standardized here under a "jwt" package or module?