5e263baed2
- name: :oidc → Identifier for this login provider in the app. - scope: [:openid, :email, :profile] → Tells the provider we want the user’s ID (openid), their email, and basic profile info (name, picture, etc.). - response_type: :code → Uses Authorization Code Flow, which is more secure because tokens are not exposed in the URL. - issuer: Rails.application.secrets.oidc_issuer → The base URL of the OIDC provider (e.g., Auth0). Used to find its config. - discovery: true → Automatically fetches the provider’s endpoints from its discovery document instead of manually setting them. - client_auth_method: :basic → Sends client ID and secret using HTTP Basic Auth when exchanging the code for tokens. Add system tests for OIDC Auth Edit the oauth docs to support OIDC auth
33 lines
936 B
Ruby
33 lines
936 B
Ruby
class Admin::Settings::FeaturesTabComponent < ApplicationComponent
|
|
def settings
|
|
%w[
|
|
feature.featured_proposals
|
|
feature.facebook_login
|
|
feature.google_login
|
|
feature.oidc_login
|
|
feature.saml_login
|
|
feature.twitter_login
|
|
feature.wordpress_login
|
|
feature.signature_sheets
|
|
feature.user.recommendations
|
|
feature.user.recommendations_on_debates
|
|
feature.user.recommendations_on_proposals
|
|
feature.user.skip_verification
|
|
feature.community
|
|
feature.map
|
|
feature.allow_attached_documents
|
|
feature.allow_images
|
|
feature.help_page
|
|
feature.remote_translations
|
|
feature.translation_interface
|
|
feature.remote_census
|
|
feature.valuation_comment_notification
|
|
feature.graphql_api
|
|
feature.sdg
|
|
feature.machine_learning
|
|
feature.remove_investments_supports
|
|
feature.dashboard.notification_emails
|
|
]
|
|
end
|
|
end
|