...
Gson dependency should be removed from OP: it’s only used for parsing the contents from sector_identifier_uri during dynamic registration
Need to clarify the use of AttributeInOIDCRequestedClaims matcher
Current documentation and examples are a bit misleading
OAuth2Client authentication flow’s c14n step currently uses same c14n flows as end-user authentication flows
Perhaps a flag to disable c14n step or customisable set of c14n flows for this flow
...