feat: remove publicData scope when not required

src/Http/Controllers/Auth/SsoController.php

@@ -77,6 +77,11 @@ public function redirectToProvider($profile = null)
                 $used_scopes = $token->scopes;
         }
 
+        if (count($used_scopes) > 1){
+            if (($key = array_search('publicData', $used_scopes)) !== false) {
+                unset($used_scopes[$key]);
+            }
+        }
         // Store the scopes we are sending to CCP in the session so we can
         // validate the JWT response contains the right scopes.
         session()->put('scopes', $used_scopes);