Penpot/penpot
0
Fork 0
mirror of https://github.com/penpot/penpot.git synced 2025-01-22 14:39:45 -05:00
Code Issues Activity

🔧 Allow override oidc scopes.

Browse source 
And relax default scopes to `profile` and `openid`.
This commit is contained in:
Andrey Antukh 2021-05-12 09:47:13 +02:00 committed by Andrés Moya
parent 3656ab977b
commit 07f3d48a9d
2 changed files with 6 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
CHANGES.md
View file

@ -25,6 +25,11 @@
### :arrow_up: Deps updates
### :boom: Breaking changes
- The OIDC setting `PENPOT_OIDC_SCOPES` has chenged the default semantincs. Before this
configuration added scopes to the default set. Now it replaces it, so use with care, because
penpot requires at least `name` and `email` props found on the user info object.
### :heart: Community contributions by (Thank you!)

3
backend/src/app/http/oauth.clj
View file

@ -232,8 +232,7 @@
:token-uri (cf/get :oidc-token-uri)
:auth-uri (cf/get :oidc-auth-uri)
:user-uri (cf/get :oidc-user-uri)
:scopes (into #{"openid" "profile" "email" "name"}
(cf/get :oidc-scopes #{}))
:scopes (cf/get :oidc-scopes #{"openid" "profile"})
:roles-attr (cf/get :oidc-roles-attr)
:roles (cf/get :oidc-roles)
:name "oidc"}]