We only allow organizations to authenticate via Azure Open ID Connect, but the library does not support this and prints:
oidc: issuer did not match the issuer returned by provider, expected "https://login.microsoftonline.com/organizations/v2.0\" got "https://login.microsoftonline.com/{tenantid}/v2.0\

Reference: https://docs.microsoft.com/en-us/azure/active-directory/develop/v2-protocols-oidc#fetch-the-openid-connect-metadata-document