feat: token revocation and OP certification (#2594)

* fix: try using only user session if no user is set (id_token_hint) on prompt none

* fix caos errors As implementation

* implement request mode

* return explicit error on invalid refresh token use

* begin token revocation

* token revocation

* tests

* tests

* cleanup

* set op config

* add revocation endpoint to config

* add revocation endpoint to config

* migration version

* error handling in token revocation

* migration version

* update oidc lib to 1.0.0

internal/errors/caos_error.go

@@ -58,6 +58,10 @@ func (err *CaosError) Is(target error) bool {
 }
 
 func (err *CaosError) As(target interface{}) bool {
+	_, ok := target.(**CaosError)
+	if !ok {
+		return false
+	}
 	reflect.Indirect(reflect.ValueOf(target)).Set(reflect.ValueOf(err))
 	return true
 }