fix: add OIDC scopes to Jellyfin service
Also adds <DisabledPushedAuthorization>true</DisablePushedAuthorization>, as otherwise I get "Error preparing login: Unauthorized - Failed to push authorization parameters"
This commit is contained in:
parent
f17e9885d2
commit
15613b2eaf
1 changed files with 9 additions and 0 deletions
|
|
@ -483,6 +483,7 @@ in
|
|||
<string>groups</string>
|
||||
</OidScopes>
|
||||
<CanonicalLinks />
|
||||
<DisablePushedAuthorization>true</DisablePushedAuthorization>
|
||||
</PluginConfiguration>
|
||||
</value>
|
||||
</item>
|
||||
|
|
@ -732,7 +733,15 @@ in
|
|||
require_pkce = true;
|
||||
pkce_challenge_method = "S256";
|
||||
userinfo_signed_response_alg = "none";
|
||||
# Jellyfin SSO plugin uses client_secret_post for token exchange
|
||||
token_endpoint_auth_method = "client_secret_post";
|
||||
# Required OIDC scopes for Authelia to return group claims
|
||||
scopes = [
|
||||
"openid"
|
||||
"profile"
|
||||
"email"
|
||||
"groups"
|
||||
];
|
||||
}
|
||||
];
|
||||
};
|
||||
|
|
|
|||
Loading…
Reference in a new issue