remove unneccessary OIDC scope filtering (#119)

Author: parkerduckworth

ci/docker-compose-azure-cc.yml

@@ -25,5 +25,4 @@ services:
       AUTHENTICATION_OIDC_GROUPS_CLAIM: 'groups'
       AUTHORIZATION_ADMINLIST_ENABLED: 'true'
       AUTHORIZATION_ADMINLIST_USERS: 'b6bf8e1d-d398-4e5d-8f1b-50fda9146a64'
-      AUTHENTICATION_OIDC_SCOPES: 'openid,email'
 ...

ci/docker-compose-okta-cc.yml

@@ -24,5 +24,4 @@ services:
       AUTHENTICATION_OIDC_GROUPS_CLAIM: 'groups'
       AUTHORIZATION_ADMINLIST_ENABLED: 'true'
       AUTHORIZATION_ADMINLIST_USERS: '0oa7e9ipdkVZRUcxo5d7'
-      AUTHENTICATION_OIDC_SCOPES: 'openid,email'
 ...

connection/auth.js

@@ -237,8 +237,6 @@ class ClientCredentialsAuthenticator {
   };
 
   validateOpenidConfig = () => {
-    this.openidConfig.scopes = this.openidConfig.scopes
-      .filter(scope => scope != "openid" && scope != "email");
     if (this.openidConfig.scopes.length > 0) {
       return;
     }

connection/unit.test.js

@@ -63,7 +63,7 @@ describe("mock server auth tests", () => {
       password: "secure_password",
       grant_type: "password",
       client_id: "client123",
-      scope: "openid email custom_scope offline_access"
+      scope: "custom_scope offline_access"
     });
   })
 

test/server.js

@@ -48,11 +48,7 @@ const getLocalOidcConfig = (ctx, next) => {
   ctx.response.type = "application/json";
   ctx.response.body = {
     clientId: "client123",
-    href: "http://localhost:" + port + "/remote-openid-configuration",
-    scopes: [
-      "openid",
-      "email"
-    ]
+    href: "http://localhost:" + port + "/remote-openid-configuration"
   };
 };