I am creating my first test LTI. I created the LTI developer key in Canvas in root account and enabled 1 of the LTI Advantage Services, i.e. Can retrieve user data associated with the context the tool is installed in. Installed the LTI in a test course in a subaccount of the root account. The OIDC worked correctly, but in the OAuth2 flow, using a request without scope like this
https://<canvas-install-url>/login/oauth2/auth?client_id=XXX&response_type=code&state=YYY&redirect_uri=https://example.com/oauth2response
I got invalid_scope error. I have tried sending in a scope=openid and still the same invalid scope error. I have also tried disabling any services in the LTI developer key, and enabling all the services, all returning invalid_scope.
I have been working on this off and on for months 😓but couldn't get pass this nasty "invalid scope". Could someone please help? Any insights or any pointers are deeply appreciated!
.png "nschutz"){kind=avatar}
