bug: Microsoft Social connector does not request additional scopes

[MartBono]

Describe the bug

When using the Microsoft Social connector the email and profile picture does not get added on login. It seems that the scopes are not properly send to Microsoft.

At the top of:
logto/packages/connectors/connector-azuread/src/constant.ts

It has a hard coded scope: "User.Read".

Expected behavior

It is expected that when permissions are given in Microsoft Azure Graph Permissions. That these permissions are used by Logto to retrieve the added info, like the email and profile picture.

In contrast to for example the Google Social connector, there is no paragraph on adding the scopes to Azure.

How to reproduce?

• Make a new empty project
• Add Microsoft Social connector
• Add scopes (email, profile and openid) in Microsoft Azure Graph Premissions
• Login using Logto with a Microsoft account that has a profile picture.
• Observe that Logto does not make an account with a email and or profile picture

Context

• Logto Cloud
• Self-hosted, Logto version =
  • Container (Docker image)
  • Raw Node.js

Screenshots

[darcyYe]

Fix in PR#7087