CyberDuck Permissions? #15796

alvinTXRH · 2024-04-03T21:18:30Z

alvinTXRH
Apr 3, 2024

I am working on setting up an EntraID SSO to Cyberduck and my security team is asking why there is the need for this set of permissions:
"Maintain access to data you have given it access to
Allows the app to see and update the data you gave it access to, even when users are not currently using the app. This does not give the app any additional permissions.

This is a permission requested to access your data in [redacted]."

This seems a little excessive. Can anyone shed light on this? I have not been able to email the support team at Cyberduck.

Answered by dkocher

Apr 12, 2024

The offline_access scope ¹ is required to obtain a refresh token. Otherwise, the user would need to start a new OAuth flow every time when connecting.

https://learn.microsoft.com/en-us/entra/identity-platform/scopes-oidc#the-offline_access-scope ↩

View full answer

dkocher · 2024-04-12T08:33:00Z

dkocher
Apr 12, 2024
Maintainer

The offline_access scope ¹ is required to obtain a refresh token. Otherwise, the user would need to start a new OAuth flow every time when connecting.

https://learn.microsoft.com/en-us/entra/identity-platform/scopes-oidc#the-offline_access-scope ↩

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

CyberDuck Permissions? #15796

Uh oh!

{{title}}

Uh oh!

Replies: 1 comment

Uh oh!

{{title}}

Uh oh!

Select a reply

Uh oh!

Uh oh!

CyberDuck Permissions? #15796

Uh oh!

alvinTXRH Apr 3, 2024

Footnotes

Replies: 1 comment

Uh oh!

dkocher Apr 12, 2024 Maintainer

Footnotes

alvinTXRH
Apr 3, 2024

dkocher
Apr 12, 2024
Maintainer