The Openid-configuration Endpoint
may provide a Scopes_supported entry as a JSON
array containing a list of the OAuth Scope
values that this server supports. The server MUST
support the openid scope value. Servers MAY choose not
to advertise some supported scope values even when this parameter is used, although those defined in OpenID Connect Core 1.0 SHOULD
be listed, if supported.
There might be more information for this subject on one of the following: