In OIDC consent was optional. I don’t believe that idea should apply to SIOP. Consent is always required. It might occur in different forms on (or through) the wallet. It might be buried in some user gesture, It might be remembered in some refresh token. But it is always required.
Issue #1215 resolved