[3.13.0]
Update openid-connect-generic to 3.11.3
Add configurable issuer setting for JWT validation by @daggerhart in #639
Fix JWT verification with Microsoft Entra ID JWKS by @daggerhart in #636
629: Fix to better match issuer in jwt validator by @daggerhart in #630
Previous versions decoded JWT tokens without cryptographic verification
Added proper JWT signature verification using JWKS (JSON Web Key Set)
Implements firebase/php-jwt library for validation
Validates all required claims: exp, aud, iss, iat, sub
Added signature verification for aggregated claims from secondary JWTs
Prevents injection of forged claims
Replaced unsafe HTTP functions with SSRF-protected alternatives