How to JWT (with Keycloak). Prosody JWT verification code

I’m trying to connect Jitsi with Keycloak tokens, the problem is that Keycloak tokens are signed using either with a certificate or a [client id + client secret].

Using the JWT Debugger in jwt.io I can see that prosody accepts tokens signed with a secret only.

What’s the best solution here?

Modifying prosody to accept a certificate or a [client id + client secret] signed token?

How can we enable sso on jitsi with keycloak

It seems this has been done here https://github.com/D3473R/jitsi-keycloak
I’m about to test this myself - looks like until now an additional layer is needed to translate between Jitsi and Keycloak.

Hey there, is there any feedback that you could share using Jitsi with Keycloak?

Thanks!