From bdfb10137aaf5b6d2c22b795e531a460ecce1687 Mon Sep 17 00:00:00 2001
From: "m.nabokikh" <maksim.nabokikh@flant.com>
Date: Tue, 17 May 2022 18:20:37 +0400
Subject: [PATCH] Add the comment about groups request notification

Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>
---
 server/templates.go | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/server/templates.go b/server/templates.go
index 9be8019a..7ac18cc1 100644
--- a/server/templates.go
+++ b/server/templates.go
@@ -238,6 +238,9 @@ var scopeDescriptions = map[string]string{
 	"offline_access": "Have offline access",
 	"profile":        "View basic profile information",
 	"email":          "View your email address",
+	// 'groups' is not a standard OIDC scope, and Dex only returns groups only if the upstream provider does too.
+	// This warning is added for convenience to show that the user may expose some sensitive data to the application.
+	"groups": "View your groups",
 }
 
 type connectorInfo struct {
-- 
GitLab