[BUG] OIDC initialization fails with Keycloak due to trailing slash issuer validation mismatch

[rafandoo]

Description

OIDC initialization fails with Keycloak due to issuer URI validation mismatch involving trailing slash normalization.

I tested multiple issuer formats:

• with trailing slash
• without trailing slash
• using the .well-known/openid-configuration URL directly

but NetWeave always fails to initialize OIDC with the same validation error.

The OIDC provider is Keycloak.

Steps to Reproduce

1. Deploy NetWeave 0.1.2 with OIDC enabled
2. Use Keycloak as the OIDC provider
3. Start NetWeave
4. Observe OIDC initialization logs

Expected Behaviour

NetWeave should successfully initialize OIDC when the configured issuer matches the issuer returned by the provider metadata.

The provider returns:

"issuer": "https://auth.example.dev/realms/infraestrutura"

OIDC initialization should succeed regardless of trailing slash normalization.

Actual Behaviour

OIDC initialization fails with:

OIDC init failed (running without OIDC): Validation error: unexpected issuer URI `https://auth.example.dev/realms/infraestrutura` (expected `https://auth.example.dev/realms/infraestrutura/`)

This happens regardless of:

• configuring issuer with /
• configuring issuer without /
• using .well-known/openid-configuration

Environment

• NetWeave version: 0.1.2
• Deployment: Docker
• OS: Ubuntu 24.04
• Browser: Chrome

Logs / Screenshots

inw-netweave_netweave.1.rvyw92ysv9jz8vijx8fbm4vtb_logs.txt