From 534234edd1ff5dabe905f2ecc31633ed45c416ee Mon Sep 17 00:00:00 2001
From: Eric Eastwood <erice@element.io>
Date: Wed, 19 Feb 2025 15:52:07 -0600
Subject: [PATCH] `client_id` is a required parameter in a OAuth access token
 request

> ##### 4.1.3.  Access Token Request
>
> [...]
>
>    client_id
>         REQUIRED, if the client is not authenticating with the
>         authorization server as described in Section 3.2.1.
>
> *-- https://datatracker.ietf.org/doc/html/rfc6749#section-4.1.3*
---
 synapse/handlers/oidc.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/synapse/handlers/oidc.py b/synapse/handlers/oidc.py
index c9109c9e79..6450ec3145 100644
--- a/synapse/handlers/oidc.py
+++ b/synapse/handlers/oidc.py
@@ -731,6 +731,7 @@ class OidcProvider:
         }
 
         args = {
+            "client_id": self._client_auth.client_id,
             "grant_type": "authorization_code",
             "code": code,
             "redirect_uri": self._callback_url,