Add support for prompt=select_account during settings OIDC link

[jonas-jonas]

Preflight checklist

• I could not find a solution in the existing issues, docs, nor discussions.
• I agree to follow this project's Code of Conduct.
• I have read and am following this repository's Contribution Guidelines.
• I have joined the Ory Community Slack.
• I am signed up to the Ory Security Patch Newsletter.

Ory Network Project

No response

Describe your problem

When linking OIDC account, it is common that users have multiple Google accounts signed in at once. Depending on what they chose before, Google might choose to skip account selection and consent, making it very difficult to choose the right account to link during settings OIDC linking.

Describe your ideal solution

Kratos already supports upstream_parameters, and thus prompt, and we should just force the select_account prompt for Google (and possibly others, though it's not clear, what the side effects of this are

Workarounds or alternatives

Version

master

Additional Context

No response

[jonas-jonas]

Fixed via #266

[aeneasr]

Shouldn't this be solved in kratos instead? Otherwise it only works for elements but not native and other sdks

[aeneasr]

Generally I think flow logic shouldn't belong in Ory Elements, otherwise it will be quite challenging to have consistent use experiences across different sdks (versions and clients).

[jonas-jonas]

Yea I was thinking that we could add an option to the Oidc provider config to configure these parameters by default. I think that would make most sense. I'll work on that.

[aeneasr]

That might be already possible. I'm also OK to show account selection for account linking only. If you always pass account_select it will cause issues when double redirecting, see: ory/kratos#4064