Fedora¶
Fedora’s OpenID Connect (OIDC) backend requires the following minimum configuration:
SOCIAL_AUTH_FEDORA_OIDC_KEY = '<client_id>'
SOCIAL_AUTH_FEDORA_OIDC_SECRET = '<client_secret>'
Scopes¶
The default scopes will include the user’s group and agreements. You can request additional claims, for example:
SOCIAL_AUTH_FEDORA_OIDC_SCOPE = ['groups']
and you can prevent the inclusion of the default scopes using:
SOCIAL_AUTH_FEDORA_OIDC_IGNORE_DEFAULT_SCOPE = True
Environment¶
You can override the location of the OIDC provider with the
SOCIAL_AUTH_FEDORA_OIDC_OIDC_ENDPOINT
setting. For example, to authenticate with
Fedora’s staging environment, use this setting:
SOCIAL_AUTH_FEDORA_OIDC_OIDC_ENDPOINT = 'https://id.stg.fedoraproject.org'