diff --git a/navi/api/routes/auth.py b/navi/api/routes/auth.py
index 2c67280..870e1fb 100644
--- a/navi/api/routes/auth.py
+++ b/navi/api/routes/auth.py
@@ -74,7 +74,7 @@
     safe_return_to = _sanitize_return_to(return_to)
     auth_request = client.build_authorization_request(
         return_to=safe_return_to,
-        scopes=["openid", "email", "profile", "roles", "permissions", "offline_access"],
+        scopes=["openid", "email", "profile", "roles", "permissions"],
     )
 
     # Detect Android WebView via User-Agent (more reliable than JS navigator.userAgent)