Page tree

Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.


The end-user may accept (or reject) each scope separately. Rejected scopes are not contained in the set of scopes returned via introspection for any associated Access tokenNote that consent handling happens on a per-scope basis. The end-user may not reject individual claims associated with any scope.



Consent is currently required for a scope each time an OIDC Client requests that scope. A possible future feature is to allow the end-user's consent to become persistent, thus applying also for sub-sequent access from the same OIDC Client. Such an extension will be accompanied by a MyPage allowing the end-user to withdraw any such persistent consent at any time.