From 7853c759d970c9fb1245c48f2ead290c2de8fdd7 Mon Sep 17 00:00:00 2001
From: Rob Winch <rwinch@users.noreply.github.com>
Date: Fri, 18 May 2018 10:03:36 -0500
Subject: [PATCH] OidcConfigurationProvider uses OidcScopes.OPENID

Issue: gh-5355
---
 .../config/oauth2/client/oidc/OidcConfigurationProvider.java   | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/config/src/main/java/org/springframework/security/config/oauth2/client/oidc/OidcConfigurationProvider.java b/config/src/main/java/org/springframework/security/config/oauth2/client/oidc/OidcConfigurationProvider.java
index d45dde61a5..92c2417fac 100644
--- a/config/src/main/java/org/springframework/security/config/oauth2/client/oidc/OidcConfigurationProvider.java
+++ b/config/src/main/java/org/springframework/security/config/oauth2/client/oidc/OidcConfigurationProvider.java
@@ -24,6 +24,7 @@ import org.springframework.security.oauth2.client.registration.ClientRegistratio
 import org.springframework.security.oauth2.core.AuthorizationGrantType;
 import org.springframework.security.oauth2.core.ClientAuthenticationMethod;
 import org.springframework.security.oauth2.core.oidc.IdTokenClaimNames;
+import org.springframework.security.oauth2.core.oidc.OidcScopes;
 import org.springframework.web.client.RestTemplate;
 
 import com.nimbusds.oauth2.sdk.GrantType;
@@ -99,7 +100,7 @@ public final class OidcConfigurationProvider {
 		Scope scope = metadata.getScopes();
 		if (scope == null) {
 			// If null, default to "openid" which must be supported
-			return Arrays.asList("openid");
+			return Arrays.asList(OidcScopes.OPENID);
 		} else {
 			return scope.toStringList();
 		}