1. In the server configuration id4 time to pay attention AllowedScopes open inside the client value and the value to be added GetIdentityResources is the same, otherwise the call after the report { "error": "invalid_scope"} error.
2. Configure id4 service on configservice netcore time to add a signature credentials, specifically look at this:
https://stackoverflow.com/questions/46142991/what-is-the-signing-credential-in-identityserver4
He used here is jwt default mode, I used netcore2.2, so without AddDeveloperSigningCredential () method will be reported No signing credential is configured. Can not create JWT token error, this method should be added about the meaning of jwt token verify mode