Identityserver4: Invalid_scope when no scope specified for client credentials flow
According to:
https://leastprivilege.com/2016/09/14/new-in-identityserver4-default-scopes/
However, when I do not pass a scope, I get an invalid scope error? My client config looks like this:
ClientId = apiClientMeta.ClientId,
// no interactive user, use the clientid/secret for authentication
AllowedGrantTypes = GrantTypes.ClientCredentials,
// scopes that client has access to
AllowedScopes = { "consapi", "custapi" },
ClientSecrets = secretes,
AllowAccessTokensViaBrowser = true,
RedirectUris = someuri,
PostLogoutRedirectUris = someuri,
AllowedCorsOrigins = true,
RequireConsent = false,
AlwaysIncludeUserClaimsInIdToken = true,
AccessTokenType = AccessTokenType.Jwt, //Always
AlwaysSendClientClaims = true
My APIResources:
ApiResource apiResource = new ApiResource("consapi", "Consultant API");
apiResources.Add(apiResource);
ApiResource apiResource2 = new ApiResource("custapi", "Customer API");
apiResources.Add(apiResource2);
I need to be able to get all of the AllowedScopes back for multiple API access, unless there's another way to do it.
chrisrestall
All 3 comments
see
and
leastprivilege
on 5 Jan 2018
All set on this issue -- can we close?
brockallen
on 7 Jan 2018
This thread has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.
![lock[bot] picture](https://avatars1.githubusercontent.com/in/6672?v=4&s=40)
lock[bot]
on 13 Jan 2020
Related issues
wangkanai
路
3Comments
leksim
路
3Comments
cixonline
路
3Comments
not-good-with-usernames
路
3Comments
Aravind1729
路
3Comments