Hi Bro I have doubt on the Private key Jwt the Client will Generate the private and public key pair how the client sent the public key the authorization server Through client dynamic registration or any other specific way explain that bro
the application must be registered somehow with the OAuth2 server. That means either you do it manually somehow (i.e. when you setup the application you upload the public key on some website). You ca of course also register your application via the dynamic client registration protocol. But regardless how you register the application (manually / out of band) or via dynamic client registration, it is at the registration where the public key is stored on the OAuth 2 server.
