node-oidc-provider missing offline_access scope

308 Views Asked by Konstantin Zelinsky At 05 May 2023 at 17:46

I'm using node-oidc-provider v6 and missing offline_access scope in authorization response. I found in the library code that offline_access can be automatically removed in some cases. https://github.com/panva/node-oidc-provider/blob/v6.x/lib/actions/authorization/check_scope.js#L55

If I remove this line (line #55) everything works okay. How can I add consent to prompts?

I have endpoint to handle prompt with consent screen.

case 'consent': {
        const consent = {
          rejectedScopes: [],
          rejectedClaims: [],
          replace: false,
        };

        return oidc.interactionFinished(
          req,
          res,
          { consent },
          {
            mergeWithLastSubmission: true,
          }
        );
      }

Original Q&A

There are 1 best solutions below

wicccked On 11 May 2023 at 05:32

Make sure you're passing prompt=consent URL param to the initial code request (to the /auth endpoint).

More info: https://developers.google.com/identity/openid-connect/openid-connect#authenticationuriparameters

I also compared your code to mine and I'm pretty much using code from the Koa example. During the first OAuth request, consent is just an empty object. See this example for reference

node-oidc-provider missing offline_access scope

There are 1 best solutions below

Related Questions in OPENID-CONNECT

Related Questions in NODE-OIDC-PROVIDER

Trending Questions

Popular # Hahtags

Popular Questions