In a Kubernetes cluster I want to integrate an open source Api Gateway which implements OAuth2 and OpenID protocols.

I've used Kong which allows you to use JWT from an External Authorization provider but I also would like the Api Gateway to encrypt my JWT in order to get a JWE to send to the frontend.

This way I can wrap some personal info into JWT and hide them to the frontend.

Is there a way to customize and extend Kong Kubernetes Controller or do you have a suggestion to implement JWE instead of simple JWT?