feat(auth): OAuth2 scope support (#5181)

server/modules/authentication/oauth2/authentication.js

@@ -17,7 +17,8 @@ module.exports = {
       clientSecret: conf.clientSecret,
       userInfoURL: conf.userInfoURL,
       callbackURL: conf.callbackURL,
-      passReqToCallback: true
+      passReqToCallback: true,
+      scope: conf.scope
     }, async (req, accessToken, refreshToken, profile, cb) => {
       try {
         const user = await WIKI.models.users.processProfile({

server/modules/authentication/oauth2/definition.yml

@@ -59,3 +59,8 @@ props:
     title: Logout URL
     hint: (optional) Logout URL on the OAuth2 provider where the user will be redirected to complete the logout process.
     order: 9
+  scope:
+    type: String
+    title: Scope
+    hint: (optional) Application Client permission scopes.
+    order: 10