diff --git a/main.go b/main.go
index 2932e4f5d32cfd9a01cb1fb109dd5124556b0937..b88756f357cadcea45a58785e79cb5dc3b3c851a 100644
--- a/main.go
+++ b/main.go
@@ -11,7 +11,6 @@ 	"io"
 	"log"
 	"net/http"
 	"os"
-	"strings"
 	"time"
 
 	"github.com/coreos/go-oidc/v3/oidc"
@@ -38,22 +37,12 @@ 	}
 	http.SetCookie(w, c)
 }
 
-type args struct {
-	clientProvider string
-	clientID       string
-	clientSecret   string
-	port           int
-	scopes         string
-}
-
 func main() {
-	var args args
 	fs := flag.NewFlagSet("oidc", flag.ExitOnError)
-	fs.StringVar(&args.clientProvider, "client-provider", "", "Client provider (e.g. https://accounts.google.com)")
-	fs.StringVar(&args.clientID, "client-id", "", "Client ID")
-	fs.StringVar(&args.clientSecret, "client-secret", "", "Client secret")
-	fs.IntVar(&args.port, "port", 8000, "Port to run on")
-	fs.StringVar(&args.scopes, "scopes", "profile,email", "Comma-delimited scopes")
+	clientProvider := fs.String("client-provider", "", "Client provider (e.g. https://accounts.google.com)")
+	clientID := fs.String("client-id", "", "Client ID")
+	clientSecret := fs.String("client-secret", "", "Client secret")
+	port := fs.Int("port", 8000, "Port to run on")
 	fs.String("config", ".env", "Env config")
 	if err := ff.Parse(fs, os.Args[1:],
 		ff.WithEnvVarPrefix("OIDC"),
@@ -64,23 +53,22 @@ 	); err != nil {
 		log.Fatal(err)
 	}
 	ctx := context.Background()
-	scopes := strings.Split(args.scopes, ",")
 
-	provider, err := oidc.NewProvider(ctx, args.clientProvider)
+	provider, err := oidc.NewProvider(ctx, *clientProvider)
 	if err != nil {
 		log.Fatal(err)
 	}
 	oidcConfig := &oidc.Config{
-		ClientID: args.clientID,
+		ClientID: *clientID,
 	}
 	verifier := provider.Verifier(oidcConfig)
 
 	config := oauth2.Config{
-		ClientID:     args.clientID,
-		ClientSecret: args.clientSecret,
+		ClientID:     *clientID,
+		ClientSecret: *clientSecret,
 		Endpoint:     provider.Endpoint(),
-		RedirectURL:  fmt.Sprintf("http://localhost:%d/callback", args.port),
-		Scopes:       append([]string{oidc.ScopeOpenID}, scopes...),
+		RedirectURL:  fmt.Sprintf("http://localhost:%d/callback", *port),
+		Scopes:       []string{oidc.ScopeOpenID, "profile", "email"},
 	}
 
 	mux := http.NewServeMux()
@@ -166,7 +154,7 @@ 			http.Error(w, err.Error(), http.StatusInternalServerError)
 		}
 	})
 
-	bind := fmt.Sprintf(":%d", args.port)
+	bind := fmt.Sprintf(":%d", *port)
 	log.Println("listening on http://localhost" + bind)
 	log.Fatal(http.ListenAndServe(bind, mux))
 }