Not sure why we have JWK support and I hope it is not on by default.
JWK is really only useful in the case where the client needs to identify
the key needed to use to decrypt or validate an ID token/access token.
In our implementation we do not have the ability to have different
signers. This knowledge is expected to be provided in configuration.
--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com