You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: content/en/docs/appstore/modules/oidc-provider.md
+5-7Lines changed: 5 additions & 7 deletions
Original file line number
Diff line number
Diff line change
@@ -49,7 +49,6 @@ The OIDC Provider has the following features and limitations:
49
49
* The hybrid resource owner password credentials, and client credential grants are not supported, although the OIDC Provider may contain some (rudimentary) implementation to support them.
50
50
* The OIDC Provider module ignores "email", "phone" and "profile" scope values (as specified by OIDC specs) when the client includes these in a authentication request . Instead, the OIDC Provider module will include user claims in an ID-token based on a custom microflow, regardless of the scopes in the request.
51
51
* Front channel and back-channel logout are implemented as alpha features.
52
-
* The current implementation of setting custom claims in the generated ID-tokens is not working properly in this release as the custom attribute names that you would define is incorrectly set in the ID-token. If you want to set custom claims, you will have to customize the OIDC Provider module.
53
52
54
53
### 1.3 Dependencies
55
54
@@ -125,7 +124,7 @@ The rest of the configuration can be performed through the app.
125
124
1. Open the **Scopes** tab.
126
125
1. Create **New** scopes with the **Scope type** set to **Standard**.
127
126
128
-
This page sets up a single list of all the scopes that are known to the OIDC Provider module. For each client, you can then choose the scopes used by that specific client.
127
+
This page sets up a single list of all the scopes that are known to the OIDC Provider module. For each client, you can then choose the scopes used by that specific client. See [Configuring Centralized Authorization](#configuring-authorization) for more information on what scopes you should set.
129
128
130
129
1. Open the **Clients** tab.
131
130
1. Click **New Client Registration**.
@@ -151,8 +150,8 @@ To check that this works, you will need a tool for testing APIs (such as [Postma
0 commit comments