Enhance Refresh Token workflow for SDDMS
- allow customizing scopes
- properly add Content-Length header in refresh HTTP request (avoid 400 responses with some IDP eg Azure)
- make clientSecret optional, as it is not needed when using PKCE
Starting on April 8th, The Open Group will require Two Factor Authentication for all GitLab users. For instructions on setting up 2FA, see the Knowledge Article or GitLab Documentation. Note in particular that any HTTPS clones will require the use of a Personal Access Token (rather than a user’s password) once 2FA is enabled.