Thank you for posting this in Microsoft Q&A.
I understand you are looking to implement a dynamic OAuth2/OpenID Connect (OIDC) flow for your application that requires user consent for specific operations each time an API call is made. This involves displaying specific operations on the consent screen and including them as claims in the issued access token.
Unfortunately, OAuth2 with Rich Authorization Requests flow is not supported in Microsoft Entra ID.
I would request you to please share the feedback on our feedback channel https://feedback.azure.com/d365community/forum/22920db1-ad25-ec11-b6e6-000d3a4f0789 Which would be open for the user community to upvote & comment on. This allows our product teams to effectively prioritize your request against our existing feature backlog and gives insight into the potential impact of implementing the suggested feature.
can this be achieved using "openid" as the scope & using the "claims" parameter for the dynamic operations to be consented by the users.
No, you cannot achieve this using the OpenID scope. The OpenID scope operates based on the permissions specified in the application within Entra ID.
Hope this helps. Do let us know if you any further queries.
Thanks,
Navya.
If this answers your query, do click Accept Answer
and Yes
for was this answer helpful. And, if you have any further query do let us know.