Update docs

This commit is contained in:
Ryan Richard 2021-10-19 09:48:40 -07:00
parent c43e019d3a
commit d3ade82f3f
3 changed files with 6 additions and 4 deletions

View File

@ -91,7 +91,7 @@ spec:
# Request any scopes other than "openid" for claims besides
# the default claims in your token. The "openid" scope is always
# included.
additionalScopes: [groups, email]
additionalScopes: [offline_access, groups, email]
# If you would also like to allow your end users to authenticate using
# a password grant, then change this to true.

View File

@ -63,8 +63,10 @@ spec:
# GitLab is unusual among OIDC providers in that it returns an
# error if you request the "offline_access" scope during an
# authorization flow, so ask Pinniped to avoid requesting that
# scope when using GitLab.
doNotRequestOfflineAccess: true
# scope when using GitLab by excluding it from this list.
# By specifying only "openid" here then Pinniped will only
# request "openid".
additionalScopes: [openid]
# If you would also like to allow your end users to authenticate using
# a password grant, then change this to true.

View File

@ -74,7 +74,7 @@ spec:
#
# To learn more about how to customize the claims returned, see here:
# https://developer.okta.com/docs/guides/customize-tokens-returned-from-okta/overview/
additionalScopes: [groups, email]
additionalScopes: [offline_access, groups, email]
# If you would also like to allow your end users to authenticate using
# a password grant, then change this to true. Password grants only work