diff --git a/server/routes/auth/providers/oidc.js b/server/routes/auth/providers/oidc.js
index 7127ce7d6..05c790a55 100644
--- a/server/routes/auth/providers/oidc.js
+++ b/server/routes/auth/providers/oidc.js
@@ -68,6 +68,11 @@ if (OIDC_CLIENT_ID) {
       // available on the `profile` parameter
       async function (req, accessToken, refreshToken, profile, done) {
         try {
+          if (!profile.email) {
+            throw new AuthenticationError(
+              `An email field was not returned in the profile parameter, but is required.`
+            );
+          }
           const parts = profile.email.split("@");
           const domain = parts.length && parts[1];