From 5b18e287533570aeb79acfd6d2fc7a4046a0a0a6 Mon Sep 17 00:00:00 2001
From: Jens Langhammer <jens.langhammer@beryju.org>
Date: Sun, 27 Dec 2020 13:41:20 +0100
Subject: [PATCH] providers/oauth2: fix include_claims_in_id_token not being
 shown in form/API

---
 authentik/providers/oauth2/api.py   | 1 +
 authentik/providers/oauth2/forms.py | 1 +
 swagger.yaml                        | 5 +++++
 3 files changed, 7 insertions(+)

diff --git a/authentik/providers/oauth2/api.py b/authentik/providers/oauth2/api.py
index 5f79b081c..443a4da19 100644
--- a/authentik/providers/oauth2/api.py
+++ b/authentik/providers/oauth2/api.py
@@ -21,6 +21,7 @@ class OAuth2ProviderSerializer(ModelSerializer, MetaNameSerializer):
             "client_secret",
             "token_validity",
             "response_type",
+            "include_claims_in_id_token",
             "jwt_alg",
             "rsa_key",
             "redirect_uris",
diff --git a/authentik/providers/oauth2/forms.py b/authentik/providers/oauth2/forms.py
index 071b6434a..18d9bbfcf 100644
--- a/authentik/providers/oauth2/forms.py
+++ b/authentik/providers/oauth2/forms.py
@@ -55,6 +55,7 @@ class OAuth2ProviderForm(forms.ModelForm):
             "client_secret",
             "response_type",
             "token_validity",
+            "include_claims_in_id_token",
             "jwt_alg",
             "rsa_key",
             "redirect_uris",
diff --git a/swagger.yaml b/swagger.yaml
index 35ab9c741..d5c7970b5 100755
--- a/swagger.yaml
+++ b/swagger.yaml
@@ -7847,6 +7847,11 @@ definitions:
           - code token
           - code id_token
           - code id_token token
+      include_claims_in_id_token:
+        title: Include claims in id_token
+        description: Include User claims from scopes in the id_token, for applications
+          that don't access the userinfo endpoint.
+        type: boolean
       jwt_alg:
         title: JWT Algorithm
         description: Algorithm used to sign the JWT Token