With OpenID Connect, scopes affect the list of attributes that PingFederate can return to the OAuth clients. In the Attribute Scopes tab, you can optionally add associations between scopes and attributes beyond what is defined in the specification.
- Go to Add Policy. and select your policy, or click
In the Attribute Scopes tab, add any number of
Select a scope from the Scope list.
Common and exclusive scopes are both available.
Select the relevant check boxes under
If you have selected a standard scope, its associated standard attributes are automatically selected and cannot be modified. You can select additional attributes to be associated with the selected scope.
If you have selected the profile scope, any non-standard attributes that are not associated with the profile scope become inaccessible to your OAuth clients. The administrative console displays a warning message with a list of inaccessible attributes. Select the relevant check boxes to make the non-standard attributes accessible, or ignore the message to leave them inaccessible for now.
- Click Add.
Repeat these steps to define additional scope-to-attributes
Click Edit, Update, or Cancel to make or undo a change to an existing entry. Click Delete or Undelete to remove an existing entry or cancel the removal request.
- Select a scope from the Scope list.
- Click Next.