summary refs log tree commit diff
diff options
context:
space:
mode:
authorYadd <xg@xnr.fr>2024-05-22 16:29:31 +0400
committerGitHub <noreply@github.com>2024-05-22 12:29:31 +0000
commita547b49773b504deddee4db4ec4fb07971cd2fea (patch)
treee1a1ab0fed2deefb3a1abd1d366abe7fa88e89dd
parentBring auto-accept invite logic into Synapse (#17147) (diff)
downloadsynapse-a547b49773b504deddee4db4ec4fb07971cd2fea.tar.xz
Update Lemonldap-NG OIDC config (#17204)
Update OIDC documentation: by default Matrix doesn't query userinfo endpoint, then claims should be put on id_token.
Diffstat (limited to '')
-rw-r--r--changelog.d/17204.doc1
-rw-r--r--docs/openid.md2
2 files changed, 3 insertions, 0 deletions
diff --git a/changelog.d/17204.doc b/changelog.d/17204.doc
new file mode 100644
index 0000000000..5a5a8f5107
--- /dev/null
+++ b/changelog.d/17204.doc
@@ -0,0 +1 @@
+Update OIDC documentation: by default Matrix doesn't query userinfo endpoint, then claims should be put on id_token.
diff --git a/docs/openid.md b/docs/openid.md
index 9773a7de52..7a10b1615b 100644
--- a/docs/openid.md
+++ b/docs/openid.md
@@ -525,6 +525,8 @@ oidc_providers:
   (`Options > Security > ID Token signature algorithm` and `Options > Security >
   Access Token signature algorithm`)
 - Scopes: OpenID, Email and Profile
+- Force claims into `id_token`
+  (`Options > Advanced > Force claims to be returned in ID Token`)
 - Allowed redirection addresses for login (`Options > Basic > Allowed
   redirection addresses for login` ) :
   `[synapse public baseurl]/_synapse/client/oidc/callback`