Generic OIDC Connect - Twitch.tv
Hi Team, I am setting up Twitch.tv as an authorization provider for Cloudflare Access using Generic OIDC. The twitch documentation is found at https://dev.twitch.tv/docs/authentication/getting-tokens-oidc/
When attempting to test the configuration, I get an error related to the scope. {"status":400,"message":"invalid scope requested: 'email'"}
The current scope is &scope=openid+email+profile but twitch wants to see user:read:email. Is there any way to modify the scope for this?
2 Replies
I dont think you can change the default scopes it requests as those are standard. One thing you can do though is set the authorize endpoint to a worker that just redirects with email replaced with the correct scope.
This is what I do with AWS Cognito because Cognito also doesnt support Twitch not following the standard 😅
Ok thanks I'll try that 
I’ve been playing around with workers to try to achieve this and still a little puzzled. Could you provide your workers script with PII removed? I’m just looking for a rough template for this worker. Thanks
I’ve been playing around with workers to try to achieve this and still a little puzzled. Could you provide your workers script with PII removed? I’m just looking for a rough template for this worker. Thanks