From 0a6d9590060a97b047f5e8234998765b15681bf9 Mon Sep 17 00:00:00 2001
From: Swan <swan@legavote.fr>
Date: Tue, 23 Sep 2025 11:45:22 +0200
Subject: [PATCH] fix: make response content type check less strict

---
 src/OpenIDConnectClient.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/OpenIDConnectClient.php b/src/OpenIDConnectClient.php
index 3771a4c6..f58e163b 100644
--- a/src/OpenIDConnectClient.php
+++ b/src/OpenIDConnectClient.php
@@ -1283,7 +1283,7 @@ public function requestUserInfo(?string $attribute = null) {
         }
 
         // When we receive application/jwt, the UserInfo Response is signed and/or encrypted.
-        if ($this->getResponseContentType() === 'application/jwt' ) {
+        if (strpos($this->getResponseContentType(), 'application/jwt') === 0) {
             // Check if the response is encrypted
             $jwtHeaders = $this->decodeJWT($response);
             if (isset($jwtHeaders->enc)) {