To interact with the guardian, we need to authenticate via OIDC. Guardian needs the sub claim, which is by default not added to tokens for clients created with univention-keycloak. -> add basic scope as default scope when creating oidc clients with univention-keycloak
7f82ad5c6266f0225a10a432967489b352699838 - add basic scope 094edcfe653e27a4ba63ba8a2a3366fcda2ef9d6 - advisory Successful build Package: univention-keycloak Version: 3.0.29 Branch: 5.2-0 Scope: errata5.2-1 User: fbotner
OK: basic scope gets added for oidc/rp clients OK~: advisory (wording adjusted in git:906d3ab4d2a) FAIL: commit message doesn't reference bug number: git log --grep 58254 origin/5.2-1 FAIL: There is no way to update existing clients. It could cause problems for clients already created by joinscripts, which never receive the update and we have to debug the issue then. → not changeable, therefor VERIFIED
<https://errata.software-univention.de/#/?erratum=5.2x89>