• Using AzureAD OIDC provider with OSS.
• Coder fails with email_verified claim missing please verify email address.
• AzureAD does not emit this claim by default. See https://docs.microsoft.com/en-us/answers/questions/812672/microsoft-openid-connect-getting-verified-email.html
• After adding custom claim to AzureAD it errors with:

{"message":"Failed to extract OIDC claims.","detail":"json: cannot unmarshal string into Go struct field .email_verified of type bool"}

• I don't see how to configure AzureAD to have that come through as a bool instead of string.

Ideally there would be ability to disable/adjust this verification option based on OIDC provider. At the moment it just fails without option: