The authenticator refuses to validate signed id tokens which are not using RS256 algorithm

The ID validator behavior is a bit strange: it's mandatory to indicate it when creating the validator, while it could easily use the one indicated in the JWT when calling validate(). So the code was setting one, expecting it more to be the default, but turns out it's the only accepted one, and it's not possible to configure the validator to accept any supported algorithm.