Refresh token request fails when using custom zitadel scopes
We are using custom zitadel scopes (e.g. urn:zitadel:iam:org:project:roles) when requesting an access token. This works for getting the access token, however the refresh token request fails with the error "invalid_scope". When I remove the custom Zitadel scopes the token refresh works without problem. I'm using angular-oauth-oidc library to fetch/refresh tokens with the same settings as in the showcase from Zitadel.
2 Replies
Unknown User•2y ago
Message Not Public
Sign In & Join Server To View
i tested some more and realized this only happens with these scopes: urn:zitadel:iam:org:project:roles urn:zitadel:iam:org:projects:roles
when i only add the urn:zitadel:iam:org:project🆔zitadel:aud scope it works without a problem. Since I do not use the above scopes anymore this works for me now.