diff --git a/roles/openshift-apps/flask-oidc-dev/templates/client_secrets.json b/roles/openshift-apps/flask-oidc-dev/templates/client_secrets.json
index 9cddef70ce..100d3f8bbe 100644
--- a/roles/openshift-apps/flask-oidc-dev/templates/client_secrets.json
+++ b/roles/openshift-apps/flask-oidc-dev/templates/client_secrets.json
@@ -7,7 +7,7 @@
 {% endif %}
   "OIDC_ISSUER": "https://id{{env_suffix}}.fedoraproject.org/openidc/",
   "OIDC_USERINFO_URL": "https://id{{env_suffix}}.fedoraproject.org/openidc/UserInfo",
-  "OIDC_SCOPES":"openid profile email",
+  "OIDC_SCOPES":"openid profile email https://id.fedoraproject.org/scope/groups",
   "OIDC_CLIENT_AUTH_METHOD":"client_secret_post",
   "OIDC_OPENID_CALLBACK":"/oidc_callback"
 }