to redirect to keycloak and require a second login to access a scope that grants a role to access own account data. That role was then added to the new JWT token but the scope not as it is configured (Disabled include in token scope). With angular-oauth2-oidc it is also possible to do a initImplicitFlow with the additional params for example the custom scope but the request fails because angular-oauth2-oidc adds the scope of the config "openid profile email" to the url and another scope parameter for "custom_scope". Is that a wanted behaviour that the params do not merge and is there a solution to fix that or is it a bug?
To Reproduce
Steps to reproduce the behavior:
Create function with initImplicitFlow additional parameters "prompt: login" and "scope: custom_scope" that scope needs to be in the auth provider
Trigger function to do login
Auth Error happens
Expected behavior
Scopes are merged together
Desktop (please complete the following information):
Describe the bug Can't say if it is a bug fully. In Keycloak-Angular + Keycloak-JS i was able to use
to redirect to keycloak and require a second login to access a scope that grants a role to access own account data. That role was then added to the new JWT token but the scope not as it is configured (Disabled include in token scope). With angular-oauth2-oidc it is also possible to do a initImplicitFlow with the additional params for example the custom scope but the request fails because angular-oauth2-oidc adds the scope of the config "openid profile email" to the url and another scope parameter for "custom_scope". Is that a wanted behaviour that the params do not merge and is there a solution to fix that or is it a bug?
To Reproduce Steps to reproduce the behavior:
Expected behavior Scopes are merged together
Desktop (please complete the following information):