Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Downgrade requested OAuth scope of TikTok provider #12608

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Downgrade requested OAuth scope of TikTok provider #12608

wants to merge 1 commit into from

Conversation

and-oli
Copy link

@and-oli and-oli commented Feb 5, 2025

☕️ Reasoning

The provider is currently requesting a token with user.info.profile scope, which is more restrictive than user.info.basic. The latter is the one provided by default by the TikTok Login kit and as such, should be the one used for authentication purposes with TikTok. The user info requested by the provider is also covered by the user.info.basic scope. For this reason, this PR changes the requested scope to user.info.basic.

See TikTok's documentation on scopes needed for user info

🧢 Checklist

  • Documentation
  • Tests
  • Ready to be merged

🎫 Affected issues

📌 Resources

@and-oli
Downgrade requested OAuth scope of TikTok provider
f8461bd 
The provider is currently requesting a token with `user.info.profile` scope, which is more restrictive than `user.info.basic`. The latter is the one provided by default by the TikTok Login kit and as such, should be the one used for authentication purposes with TikTok. The user info requested by the provider is also covered by the `user.info.basic` scope. For this reason, this PR changes the requested scope to `user.info.basic`.
@and-oli and-oli requested a review from ThangHuuVu as a code owner February 5, 2025 09:05
@vercel Vercel
Copy link

vercel bot commented Feb 5, 2025

@and-oli is attempting to deploy a commit to the authjs Team on Vercel.

A member of the Team first needs to authorize it.

@vercel Vercel
Copy link

vercel bot commented Feb 5, 2025
edited
Loading

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
auth-docs ✅ Ready (Inspect) Visit Preview 💬 Add feedback Feb 5, 2025 9:09am
1 Skipped Deployment
Name Status Preview Comments Updated (UTC)
next-auth-docs ⬜️ Ignored (Inspect) Visit Preview Feb 5, 2025 9:09am

@github-actions github-actions bot added providers core Refers to `@auth/core` labels Feb 5, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ThangHuuVu ThangHuuVu Awaiting requested review from ThangHuuVu ThangHuuVu is a code owner

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
core Refers to `@auth/core` providers
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@and-oli