Support configuring default HTTP signature spec

no-issue

We're currently running into problems with other servers implementation
of the new RFC 9421 signatures, which breaks interacting with them. This
change allows us to default to the original cavage signatures to
maintain compatibility.