In my opinion it does need to be fixed urgently. It's bad practice to encourage anyone to click through this kind of rubbish.

I must admit, I'm also not clear who is the SSO provider, and who is the consumer. All the orgs involved seem to have the same "openinfra" name.

Best wishes - Nell

On Fri, Feb 6, 2026 at 4:07 PM Jeremy Stanley <fungi@yuggoth.org> wrote:

On 2026-02-06 13:10:21 +0000 (+0000), Nell Jerram wrote:
> The OpenInfra login seems to be asking for a rather wild number of
> permissions:
[...]

I've brought this up in the past with the contracting firm that
manages those systems, but in essence that's the OpenInfra
Foundation web site asking for permission to read the information it
stores for you in the OpenInfra Foundation authentication and
identity system. There are apparently some technical challenges with
silencing that, but I'll bring it up with them again and see if they
have any new ideas to make that less scary.
--
Jeremy Stanley