Conditionally set connection_scope based on social connection?

duncan1 · March 8, 2024, 6:22pm

I am using Auth0 with expo to sign in with Google and Apple.
I need different scopes depending on which social connection the user chooses.

Here is my current code:

auth = await authorize({
        audience: ENVIRONMENT.API_AUDIENCE,
        scope: 'openid profile name email offline_access',
        additionalParameters: {
          access_type: 'offline',
          connection_scope: 'name email', //googleScopes.join(","),
        },
      });

Is there a way to conditionally set the connection scope depending on the social connection the user chooses?

rueben.tiow · March 8, 2024, 9:00pm

Hi @duncan1,

AFAIK, there isn’t any way to conditionally set the connection_scope parameter based on the social connection the user is authenticating against.

As a workaround, you could append all the scopes you need in the request. This should, in practice, only receive access based on the scopes granted and recognized by the authorization server.

So, in cases where the scopes only apply to Google, then only these Google scopes will be used. And vice versa when using Apple.

duncan1 · March 11, 2024, 5:49pm

Ah yes, that did work! For some reason, I got an invalid scope from apple at one point. Thank you!

Topic		Replies	Views
What is the equivilent of `connectionScope` in Auth0-SPA-JS? Get Help ios , swift , auth0-spa-js	3	2033	July 12, 2022
Identify Provider scope specific to user Get Help connections , google-social-connection	3	725	August 29, 2023
Two social (GitHub) connections for different scopes Get Help social-connections , scopes , github , custom-social-connec	3	3951	July 7, 2021
Add additonal scopes to Social Connection in outh0 Get Help auth0	3	2506	June 25, 2021
Update scope based on user selection of features Get Help connections , other-built-in-social-connections	3	1111	June 3, 2023

Conditionally set connection_scope based on social connection?

Related topics