You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
For some reason, the OIDC proxy provider https://oauth2.sigstore.dev/auth requests profile scope against Google and Microsoft. It shouldn't do that, openid email is enough.
Side-note: Is this proxy provider going to stay? It seems like it would complicate the whole attestation story even more, see #80.
The text was updated successfully, but these errors were encountered:
I've fixed the google scopes, but fixing the MSFT ones will require a code change.
And yes, you're correct that having a proxy provider does complicate the attestation story a bit, but it does have some benefits as well. As Dan noted, I'm working on a doc that will compare/contrast the alternatives here and will post it for community feedback shortly.
For some reason, the OIDC proxy provider https://oauth2.sigstore.dev/auth requests
profile
scope against Google and Microsoft. It shouldn't do that,openid email
is enough.Side-note: Is this proxy provider going to stay? It seems like it would complicate the whole attestation story even more, see #80.
The text was updated successfully, but these errors were encountered: