Pebble does not support kid header yet

acme4j-client/src/main/java/org/shredzone/acme4j/connector/DefaultConnection.java

@@ -182,7 +182,10 @@ public class DefaultConnection implements Connection {
             jws.getHeaders().setObjectHeaderValue("nonce", Base64Url.encode(session.getNonce()));
             jws.getHeaders().setObjectHeaderValue("url", url);
             if (session.getKeyIdentifier() != null) {
-                jws.getHeaders().setObjectHeaderValue("kid", session.getKeyIdentifier());
+                // TODO PEBBLE: cannot process "kid" yet, send "jwk" instead
+                // https://github.com/letsencrypt/pebble/issues/23
+                // jws.getHeaders().setObjectHeaderValue("kid", session.getKeyIdentifier());
+                jws.getHeaders().setJwkHeaderValue("jwk", jwk);
             } else {
                 jws.getHeaders().setJwkHeaderValue("jwk", jwk);
             }

acme4j-client/src/test/java/org/shredzone/acme4j/connector/DefaultConnectionTest.java

@@ -615,7 +615,8 @@ public class DefaultConnectionTest {
         expectedHeader.append("\"kid\":\"").append(keyIdentifier).append('"');
         expectedHeader.append('}');
 
-        assertThat(header, sameJSONAs(expectedHeader.toString()));
+        // TODO PEBBLE: cannot process "kid" yet, send "jwk" instead
+        // assertThat(header, sameJSONAs(expectedHeader.toString()));
         assertThat(claims, sameJSONAs("{\"foo\":123,\"bar\":\"a-string\"}"));
         assertThat(signature, not(isEmptyOrNullString()));