Email_verified claim


#1

Assuming ‘email’ scope is included when initiating a oidc flow to get tokens.

I am wondering why ‘email_verified’ claim is not included in the id token when the token is exchanged using ‘code’ flow. However, the ‘email_verified’ claim is included in the id token when exchanging with ‘implicit’ flow.

Thanks so much for the help!