pub fn default_allowed_algorithms() -> HashSet<Algorithm>Expand description
Returns the default set of allowed algorithms for JWT validation.
This includes all standard asymmetric algorithms that are considered secure. HMAC algorithms (HS256, HS384, HS512) are excluded by default as they are symmetric and typically not appropriate for OAuth2/OIDC flows where the authorization server and resource server are separate entities.