OIDC Provider Plugin, how do I set trusted applications?
I’m building centralized login for internal apps, so consent isn’t required in all cases. The plugin doc mentions:
OAuth Consent: Implement OAuth consent screens for user authorization, with an option to bypass consent for trusted applications.Where can I add this configuration?
OIDC Provider | Better Auth
Open ID Connect plugin for Better Auth that allows you to have your own OIDC provider.
2 Replies
I am using the Generic OAuth2 method to sign in with Entra ID - for me the option to bypass consent was within Entra ID admin itself, not directly in Better Auth - I'm not sure if that is the same for all cases, but I had to "Grant Admin Consent" https://learn.microsoft.com/en-us/entra/external-id/customers/sample-web-app-node-sign-in#grant-admin-consent
This meant users no longer had to approve access to their Entra Data from my Better Auth instance. Because as the Entra Admin I had granted permission on their behalf.
I’m not using any third party at all, purely Better Auth. I found this hardcoded
prompt = "consent" (link) that I think is causing this issue. Will create GitHub issue.GitHub
better-auth/packages/better-auth/src/plugins/oidc-provider/index.ts...
The most comprehensive authentication framework for TypeScript - better-auth/better-auth