aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorFrederick Muriuki Muriithi2024-10-09 16:23:16 -0500
committerFrederick Muriuki Muriithi2024-10-09 16:38:22 -0500
commitbdf85093f8b64d4137eb075e5b6e28d16f9dd32f (patch)
treefd7135129946559fc80fed8779ccab94a4540ac2
parent57fe4bb06f6971cac828edc20f580956e88408a0 (diff)
downloadgn-auth-bdf85093f8b64d4137eb075e5b6e28d16f9dd32f.tar.gz
Update Configs: Change `OAUTH2_SCOPE` => `OAUTH2_SCOPES_SUPPORTED`
Use the OAUTH2_SCOPES_SUPPORTED application configuration variable, that is used by the flask integration for the Authlib library to set up the supported scopes.
-rw-r--r--gn_auth/__init__.py2
-rw-r--r--gn_auth/auth/authorisation/users/admin/views.py4
-rw-r--r--gn_auth/settings.py8
3 files changed, 8 insertions, 6 deletions
diff --git a/gn_auth/__init__.py b/gn_auth/__init__.py
index 6e2a884..b695ebf 100644
--- a/gn_auth/__init__.py
+++ b/gn_auth/__init__.py
@@ -25,7 +25,7 @@ def check_mandatory_settings(app: Flask) -> None:
undefined = tuple(
setting for setting in (
"SECRET_KEY", "SQL_URI", "AUTH_DB", "AUTH_MIGRATIONS",
- "OAUTH2_SCOPE")
+ "OAUTH2_SCOPES_SUPPORTED")
if not ((setting in app.config) and bool(app.config[setting])))
if len(undefined) > 0:
raise ConfigurationError(
diff --git a/gn_auth/auth/authorisation/users/admin/views.py b/gn_auth/auth/authorisation/users/admin/views.py
index fb22e5d..5ad9038 100644
--- a/gn_auth/auth/authorisation/users/admin/views.py
+++ b/gn_auth/auth/authorisation/users/admin/views.py
@@ -197,7 +197,7 @@ def register_client():
if request.method == "GET":
return render_template(
"admin/register-client.html",
- scope=app.config["OAUTH2_SCOPE"],
+ scope=app.config["OAUTH2_SCOPES_SUPPORTED"],
users=with_db_connection(__list_users__),
granttypes=_FORM_GRANT_TYPES_,
current_user=session.session_user())
@@ -262,7 +262,7 @@ def view_client(client_id: uuid.UUID):
return render_template(
"admin/view-oauth2-client.html",
client=with_db_connection(partial(oauth2_client, client_id=client_id)),
- scope=app.config["OAUTH2_SCOPE"],
+ scope=app.config["OAUTH2_SCOPES_SUPPORTED"],
granttypes=_FORM_GRANT_TYPES_)
diff --git a/gn_auth/settings.py b/gn_auth/settings.py
index 2a78be3..d561fa9 100644
--- a/gn_auth/settings.py
+++ b/gn_auth/settings.py
@@ -21,9 +21,11 @@ REDIS_URI = "redis://localhost:6379/0"
REDIS_JOB_QUEUE = "GN_AUTH::job-queue"
# OAuth2 settings
-OAUTH2_SCOPE = (
- "profile", "group", "role", "resource", "user", "masquerade",
- "introspect")
+OAUTH2_SCOPES_SUPPORTED = (
+ # Used by Authlib's `authlib.integrations.flask_oauth2.AuthorizationServer`
+ # class to setup the supported scopes.
+ "profile", "group", "role", "resource", "register-client", "user",
+ "masquerade", "introspect", "migrate-data")
CORS_ORIGINS = "*"
CORS_HEADERS = [