File tree 1 file changed +8
-0
lines changed
1 file changed +8
-0
lines changed Original file line number Diff line number Diff line change @@ -16,6 +16,9 @@ article.
1616
1717## Coder's OIDC claims
1818
19+ Coder will request the scopes ` openid ` , ` email ` , and ` profile ` from your OIDC
20+ provider.
21+
1922Coder expects the following
2023[ OIDC claims] ( https://developer.okta.com/blog/2017/07/25/oidc-primer-part-1#whats-a-claim )
2124from your OIDC provider:
@@ -26,6 +29,11 @@ from your OIDC provider:
2629
2730- ` preferred_username ` (username for dev URLs)
2831
32+ If the ` name ` or ` email ` claims are not present in the identity token returned
33+ from your OIDC provider, Coder will request these from the ` user-info ` endpoint
34+ of your OIDC provider. If hitting this endpoint is problematic, ensure that your
35+ OIDC provider returns these claims in the tokens it provides.
36+
2937You may need to map these to your existing claims within your OIDC provider's
3038admin console. If ` name ` and ` preferred_username ` are not provided, Coder will
3139derive both claims from the email address.
You can’t perform that action at this time.
0 commit comments