Add documentation about the send_scope_to_token_endpoint config prope…

…rty (jjbohn#52) Co-authored-by: Luca Leonardo Scorcia <[email protected]>
netsphere-labs · Mar 20, 2020 · d76ba17 · d76ba17
1 parent d2c23d9
commit d76ba17
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/README.md b/README.md
@@ -108,6 +108,10 @@ These are the configuration options for the client_options hash of the configura
   that appears in the `user_info` details.
   * The `issuer` property should exactly match the provider's issuer link.
   * The `response_mode` option is optional and specifies how the result of the authorization request is formatted.
+  * Some OpenID Connect providers require the `scope` attribute in requests to the token endpoint, even if
+  this is not in the protocol specifications. In those cases, the `send_scope_to_token_endpoint`
+  property can be used to add the attribute to the token request. Initial value is `true`, which means that the
+  scope attribute is included by default.
 
 For the full low down on OpenID Connect, please check out
 [the spec](http://openid.net/specs/openid-connect-core-1_0.html).