...
Five different scope configurations are supported as suggested by the below table, corresponding to the standard scopes profile, email, phone and address and the non-standard scope nnin. Note that some of the claims associated with the profile scope are returned with the ID Token whereas others are returned via Userinfo.
Most of the claims require consent from the end user.
The end-user is always in control of the set of claims that is actually returned since all other claims demand consent from the end-user.
Apart from the nnin scope that is available only to designated OIDC Clients, note that all other scopes and claims are available to any OIDC Client. Among all supported claims, note that nnin is available only to eligible OIDC Clients. The end-user is always in control of the set of claims that is actually returned since all other most claims demand consent from from the end-user.
The OIDC Provider from BankID supports signed responses from Userinfo.
...