403 Forbidden for user info endpoint

[Ayvid]

I have a main MVC app integrated to IDS with Openid connect with client as: -

        ClientId = "wc-a",
        ClientName = "wc-a",
        AccessTokenType = AccessTokenType.Reference,
        AllowedGrantTypes = GrantTypes.HybridAndClientCredentials,
        AllowedScopes = {
            "roles",               
            "openid",
            "profile",
            "wc-q"
        },

Now i have a windows form app integrated with in main app itself for QBD with client as:-

ClientId = "wc-q",
            ClientName ="wc-q",
            AccessTokenType = AccessTokenType.Reference,
            AllowedGrantTypes = GrantTypes.HybridAndClientCredentials,
            AllowedScopes = {
                "roles",                
                "openid",
                "profile",
                " "wc-a"",

now , i want to generate a token ,which can get me claims from introspect endpoint and userinfo from userinfo endpoint to get into the endpoints residing in main app wen i generate a token with client as wc-q with scopes openid then while hitting introspect it has no sub in it and userinfo endpoint returns 403, i m able to do it using password grant type, however we don't want to use that type - is this achievable using grant type hybrid or client credentials?

[stale[bot]]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Questions are community supported only and the authors/maintainers may or may not have time to reply. If you or your company would like commercial support, please see here for more information.

[github-actions[bot]]

This issue has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.