/// <summary>
/// Uses a specific <see cref="X509Certificate2"/> to sign tokens issued by the OpenID Connect server.
/// </summary>
/// <param name="options">The options used to configure the OpenID Connect server.</param>
/// <param name="certificate">The certificate used to sign security tokens issued by the server.</param>
/// <returns>The options used to configure the OpenID Connect server.</returns>
public static OpenIdConnectServerOptions UseCertificate(
[NotNull] this OpenIdConnectServerOptions options,
[NotNull] X509Certificate2 certificate)
{
if (!certificate.HasPrivateKey)
{
throw new InvalidOperationException("The certificate doesn't contain the required private key.");
}
return(options.UseKey(new X509SecurityKey(certificate)));
}
