[Backport 2.x] Switch from org.apache.cxf.rs.security.jose to com.nimbusds.jose.jwk.

[RyanL1997]

Description

Switch from org.apache.cxf.rs.security.jose to com.nimbusds.jose.jwk.

Issues Resolved

• Relate Switch JWT library implementations #3267
• Resolve Backport On-Behalf-Of Authentication into 2.x branch #3555

Check List

• New functionality includes testing
• New functionality has been documented
• Commits are signed per the DCO using --signoff
• Add a checkstyle rule to detect including references to org.apache.cxf.rs.security.jose
• Remove all references to org.apache.cxf.rs.security.jose [15] files impacted
• Replace all unfulfilled references with com.nimbusds.jose.* components
• Add backwards combability tests for any features that have previously shipped

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

[codecov]

Codecov Report

Merging #3595 (da6108f) into 2.x (587d747) will decrease coverage by 0.07%.
Report is 3 commits behind head on 2.x.
The diff coverage is 78.26%.

@@             Coverage Diff              @@
##                2.x    #3595      +/-   ##
============================================
- Coverage     64.84%   64.77%   -0.07%     
+ Complexity     3596     3590       -6     
============================================
  Files           281      282       +1     
  Lines         20382    20381       -1     
  Branches       3374     3372       -2     
============================================
- Hits          13216    13202      -14     
- Misses         5491     5507      +16     
+ Partials       1675     1672       -3     

Files	Coverage Δ
...ic/auth/http/jwt/AbstractHTTPJwtAuthenticator.java	59.77% <100.00%> (ø)
...zon/dlic/auth/http/saml/HTTPSamlAuthenticator.java	67.36% <ø> (ø)
.../dlic/auth/http/jwt/keybyoidc/KeySetRetriever.java	80.00% <33.33%> (-1.56%)	⬇️
...azon/dlic/auth/http/jwt/keybyoidc/JwtVerifier.java	79.62% <85.71%> (-9.05%)	⬇️
...nsearch/security/authtoken/jwt/KeyPaddingUtil.java	57.14% <57.14%> (ø)
.../auth/http/jwt/keybyoidc/SelfRefreshingKeySet.java	57.74% <58.33%> (-8.46%)	⬇️
...g/opensearch/security/authtoken/jwt/JwtVendor.java	88.13% <87.17%> (-8.84%)	⬇️
...dlic/auth/http/saml/AuthTokenProcessorHandler.java	50.28% <75.00%> (+3.87%)	⬆️

... and 3 files with indirect coverage changes

[DarshitChanpura]

Thanks @RyanL1997! Feel free to merge this after adding a brief comment on why manual backport was required.

[RyanL1997]

@DarshitChanpura thanks. Yes the auto backport failure was due to the conflict of the http library. We are using org.apache.hc.core5.http in main branch. #3581 also captured this.