Skip to content

feat(ui): Special handling of offline_access scope in OAuth Consent screen #7631

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
jfoshee merged 1 commit into from
Jan 21, 2026
Merged

feat(ui): Special handling of offline_access scope in OAuth Consent screen #7631

jfoshee merged 1 commit into from
Jan 21, 2026

Conversation

@jfoshee
Copy link
Contributor

@jfoshee jfoshee commented Jan 21, 2026
edited
Loading

Merged into main in #7627, this is the core-2 PR

Description

This PR introduces special handling for the offline_access OAuth scope on the consent screen.

See discussion.

The offline_access scope is now:

  • Excluded from the list of displayed scopes, as it describes access duration rather than specific permissions.
  • Indicated by an additional sentence ("You’ll stay signed in until you sign out or revoke access.") appended to the redirect information text when present.

The sandbox environment has been updated to facilitate testing of these changes.

Part of USER-4333

With offline_access:
CleanShot 2026-01-20 at 16 19 37@2x

Without offline_access:
CleanShot 2026-01-20 at 16 20 01@2x

Sandbox demo URL:

http://localhost:4000/oauth-consent?
  scopes=email,profile,offline_access&
  oauth-application-name=My%20App&
  redirect_uri=https://example.com/callback&
  logo-url=https://example.com/logo.png&
  app-url=https://example.com

Checklist

  • pnpm test runs as expected.
  • pnpm build runs as expected.
  • (If applicable) JSDoc comments have been added or updated for any package exports
  • (If applicable) Documentation has been updated

Type of change

  • 🐛 Bug fix
  • 🌟 New feature
  • 🔨 Breaking change
  • 📖 Refactoring / dependency upgrade / documentation
  • other:

Open in Cursor Open in Web

Summary by CodeRabbit

  • New Features

    • OAuth consent screen now shows per-permission descriptions and marks permissions that require explicit consent.
    • "Offline access" is omitted from the main permission list and instead triggers an informational note about staying signed in.

  • Chores

    • Release metadata updated for a minor UI release.

✏️ Tip: You can customize this high-level summary in your review settings.

@changeset-bot
Copy link

changeset-bot bot commented Jan 21, 2026
edited
Loading

🦋 Changeset detected

Latest commit: 5f9ca9c

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 3 packages
Name Type
@clerk/clerk-js Minor
@clerk/chrome-extension Patch
@clerk/clerk-expo Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

@vercel
Copy link

vercel bot commented Jan 21, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Review Updated (UTC)
clerk-js-sandbox Ready Ready Preview, Comment Jan 21, 2026 4:23pm

Request Review

@coderabbitai
Copy link
Contributor

coderabbitai bot commented Jan 21, 2026

Important

Review skipped

Auto reviews are disabled on base/target branches other than the default branch.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Comment @coderabbitai help to get the list of available commands and usage tips.

@pkg-pr-new
Copy link

pkg-pr-new bot commented Jan 21, 2026
edited
Loading

Open in StackBlitz

@clerk/agent-toolkit

npm i https://pkg.pr.new/@clerk/agent-toolkit@7631

@clerk/astro

npm i https://pkg.pr.new/@clerk/astro@7631

@clerk/backend

npm i https://pkg.pr.new/@clerk/backend@7631

@clerk/chrome-extension

npm i https://pkg.pr.new/@clerk/chrome-extension@7631

@clerk/clerk-js

npm i https://pkg.pr.new/@clerk/clerk-js@7631

@clerk/dev-cli

npm i https://pkg.pr.new/@clerk/dev-cli@7631

@clerk/elements

npm i https://pkg.pr.new/@clerk/elements@7631

@clerk/clerk-expo

npm i https://pkg.pr.new/@clerk/clerk-expo@7631

@clerk/expo-passkeys

npm i https://pkg.pr.new/@clerk/expo-passkeys@7631

@clerk/express

npm i https://pkg.pr.new/@clerk/express@7631

@clerk/fastify

npm i https://pkg.pr.new/@clerk/fastify@7631

@clerk/localizations

npm i https://pkg.pr.new/@clerk/localizations@7631

@clerk/nextjs

npm i https://pkg.pr.new/@clerk/nextjs@7631

@clerk/nuxt

npm i https://pkg.pr.new/@clerk/nuxt@7631

@clerk/clerk-react

npm i https://pkg.pr.new/@clerk/clerk-react@7631

@clerk/react-router

npm i https://pkg.pr.new/@clerk/react-router@7631

@clerk/remix

npm i https://pkg.pr.new/@clerk/remix@7631

@clerk/shared

npm i https://pkg.pr.new/@clerk/shared@7631

@clerk/tanstack-react-start

npm i https://pkg.pr.new/@clerk/tanstack-react-start@7631

@clerk/testing

npm i https://pkg.pr.new/@clerk/testing@7631

@clerk/themes

npm i https://pkg.pr.new/@clerk/themes@7631

@clerk/types

npm i https://pkg.pr.new/@clerk/types@7631

@clerk/upgrade

npm i https://pkg.pr.new/@clerk/upgrade@7631

@clerk/vue

npm i https://pkg.pr.new/@clerk/vue@7631

commit: 5f9ca9c

@jfoshee jfoshee force-pushed the jfoshee/4333-core-2-offline-access-consent branch from 2e15a64 to 5f9ca9c Compare January 21, 2026 16:22
@jfoshee jfoshee requested review from a team and jacekradko January 21, 2026 16:34
@jfoshee jfoshee enabled auto-merge (squash) January 21, 2026 17:22
@jfoshee jfoshee merged commit 55646e2 into release/core-2 Jan 21, 2026
106 of 109 checks passed
@jfoshee jfoshee deleted the jfoshee/4333-core-2-offline-access-consent branch January 21, 2026 18:36
@clerk-cookie clerk-cookie mentioned this pull request Jan 20, 2026
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@alexcarpenter alexcarpenter alexcarpenter approved these changes

@jacekradko jacekradko Awaiting requested review from jacekradko

Assignees

No one assigned

Labels

clerk-js core-2

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@jfoshee @alexcarpenter