Auth: support JWT Authentication (#29995)

conf/defaults.ini

@@ -337,7 +337,7 @@ token_rotation_interval_minutes = 10
 # Set to true to disable (hide) the login form, useful if you use OAuth
 disable_login_form = false
 
-# Set to true to disable the signout link in the side menu. useful if you use auth.proxy
+# Set to true to disable the sign out link in the side menu. Useful if you use auth.proxy or auth.jwt.
 disable_signout_menu = false
 
 # URL to redirect the user to after sign out
@@ -498,6 +498,18 @@ whitelist =
 headers =
 enable_login_token = false
 
+#################################### Auth JWT ##########################
+[auth.jwt]
+enabled = false
+header_name =
+email_claim = 
+username_claim = 
+jwk_set_url =  
+jwk_set_file = 
+cache_ttl = 60m
+expected_claims = {}
+key_file = 
+
 #################################### Auth LDAP ###########################
 [auth.ldap]
 enabled = false