In our solution we have a large volume of users. We are using the custom auth provider to enable login though Microsoft (Azure AD). Initially all our users have been given a Microsoft F1 license, but to cut cost we are now looking into removing this license. The user will still have a functional account, but without a working email associated with it (Teams, Outlook etc.).
When testing login with a user without the F1 license I get the following appfarm error: “MissingRequiredClaimError: Missing required claim, email, from id_token”
Under “Custom Auth Providers” I have tried checking the “Remove Custom Scope” and given only “profile” and “openid” in the Custom Scope field. And I still get the same error. It seems that appfarm require an email through the scope.
One potential fix is to enter a private email for every user inside Azure AD. This is however not practical when dealing with this many users.