We are implementing OIDC Web for our internal application.
We are getting JWT key signature validation failure.
We have received 2 kid from https://unibet.okta.com/oauth2/v1/keys which is the public-key used to verify the id_token. We have observed the kid in JWT payload is different from kid received from /oauth2/v1/keys URL. So ID token key signature fails.
Little background for application : We have implemented Spring security oauth2.0 framework