feat(core,console): add trust unverified email settings to Azure SSO

[simeng-li]

Summary

Add trust unverified email settings to Azure OIDC SSO connector.

Context

Since we launched the EntraID OIDC SSO connector we have received several feedbacks that their customer's email address can not be populated to Logto's user profile when signing up through the EntraID OIDC SSO connector. The root cause is that Logto only syncs trusted email addresses with email_verified claim present in the OIDC userinfo response. However, for EntraID, the user email address is manually management by admin users. Those emails are not verified-guaranteed. So as a result when connecting EntraID through an OIDC-based SSO connector, the email_verified claim will not be returned. As a work around, we add this extra trustUnverifiedEmail config field for the EntraID OIDC connector. Developers may choose to always trust those emails returned from the Azure Directory at their own risk.

Testing

test locally

Checklist

• [ ] .changeset
• [ ] unit tests
• [ ] integration tests
• [ ] necessary TSDoc comments

[github-actions[bot]]

COMPARE TO master

Total Size Diff :chart_with_upwards_trend: +2.38 KB

Diff by File

|Name|Diff| |---|---| |packages/console/src/pages/EnterpriseSsoDetails/Connection/OidcMetadataForm/index.tsx|:chart_with_upwards_trend: +533 Bytes| |packages/console/src/pages/EnterpriseSsoDetails/types/oidc.ts|:chart_with_upwards_trend: +126 Bytes| |packages/core/src/sso/AzureOidcSsoConnector/index.ts|:chart_with_upwards_trend: +1.18 KB| |packages/core/src/sso/types/index.ts|:chart_with_upwards_trend: +41 Bytes| |packages/phrases/src/locales/en/translation/admin-console/enterprise-sso-details.ts|:chart_with_upwards_trend: +527 Bytes|