Skip to content

Comments

[3] – Use OAuth email filtering for global deployments#19

Open
dvjsharma wants to merge 2 commits intoa2i-code-For-Govstack:django-backendfrom
dvjsharma:feat/multipleOrgs
Open

[3] – Use OAuth email filtering for global deployments#19
dvjsharma wants to merge 2 commits intoa2i-code-For-Govstack:django-backendfrom
dvjsharma:feat/multipleOrgs

Conversation

@dvjsharma
Copy link

@dvjsharma dvjsharma commented Sep 12, 2024

Description

This PR introduces a new feature for global deployment. Now instead configuring OAuth App, creators can provide a list of allowed domains and backend will filter unauthorised domains. Added the following:

  • A new allowed_domain list mapped to each instance.
  • Default config is to allow all domains (*).
  • Eliminated dependency to update the OAuth app.

How to test

  • Add only particular org domain in the allowed list.
  • Sign in using that domain, you will get a token.
  • Sign up with another domain, you will get an error.

Signed by Divij Sharma

CC @Sanchay-T

@dvjsharma
feat(live): Add allowed domain list in instance app
602f4f0 
Signed-off-by: Divij Sharma <divijs75@gmail.com>
@dvjsharma
feat(OAuth): Allow only specific domains to sign in
3091569 
Signed-off-by: Divij Sharma <divijs75@gmail.com>
dvjsharma added a commit to dvjsharma/sp-service-solutions-api-Django that referenced this pull request Sep 18, 2024
@dvjsharma
Merge pull request a2i-code-For-Govstack#19 from dvjsharma/feat/oauth
1fc839e 
feat(OAuth): Migrate state & code swap to backend
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@dvjsharma