Remove offline_access from OAuth scopes

Fork: 0

root / navi-1

Browse code Remove offline_access from OAuth scopes gnexus-auth does not support offline_access yet (SUPPORTED scopes are only openid, email, profile, roles, permissions). Requesting it caused invalid_scope error and login failures. Keep refresh token support as-is — tokens are still issued and refreshed, just bound to the SSO session lifetime. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com> feature/navi-code master vmkdemo
1 parent b4c2621 commit f3140c7217cb52a944142ba113eb50247e324c5d Eugene Sukhodolskiy authored 24 days ago

Browse code

gnexus-auth does not support offline_access yet (SUPPORTED scopes are
only openid, email, profile, roles, permissions). Requesting it caused
invalid_scope error and login failures.

Keep refresh token support as-is — tokens are still issued and
refreshed, just bound to the SSO session lifetime.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

feature/navi-code master vmkdemo

1 parent b4c2621 commit f3140c7217cb52a944142ba113eb50247e324c5d

Eugene Sukhodolskiy authored 24 days ago

Patch

Unified Split

Showing 1 changed file

Ignore Space Show notes View navi/api/routes/auth.py

Show line notes below