You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The parameter is appended always, is it possible do optionally disable it in the access token request? So the scope is only sent in the Authorization Request?
At the moment my idp blocks access token requests with scope parameter.
Greets Reto
The text was updated successfully, but these errors were encountered:
Hi there
As in RFC6749 defined, when using Authorization Code Grant, the Access Token Request does not contain the scope parameter.
httpyac/src/plugins/oauth2/flow/authorizationCodeFlow.ts
Line 71 in e6ea7b7
The parameter is appended always, is it possible do optionally disable it in the access token request? So the scope is only sent in the Authorization Request?
At the moment my idp blocks access token requests with scope parameter.
Greets Reto
The text was updated successfully, but these errors were encountered: