Merge pull request #5314 from rocha/configurable-oauth-enforce-secure

Allow SSL enforcement for OAuth2 provider to be configurable

Merge pull request #5314 from rocha/configurable-oauth-enforce-secure
Allow SSL enforcement for OAuth2 provider to be configurable
c35f4bf7 · Carlos Andrés Rocha · e04c6c2a · 37d604a9 · c35f4bf7
Commit c35f4bf7 authored Sep 22, 2014 by Carlos Andrés Rocha
Hide whitespace changes
Inline Side-by-side

Showing with 2 additions and 0 deletions

lms/envs/aws.py
+2 -0

No files found.
--- a/lms/envs/aws.py
+++ b/lms/envs/aws.py
@@ -449,6 +449,8 @@ THIRD_PARTY_AUTH = AUTH_TOKENS.get('THIRD_PARTY_AUTH', THIRD_PARTY_AUTH)
 ##### OAUTH2 Provider ##############
 if FEATURES.get('ENABLE_OAUTH2_PROVIDER'):
    OAUTH_OIDC_ISSUER = ENV_TOKENS['OAUTH_OIDC_ISSUER']
+    OAUTH_ENFORCE_SECURE = ENV_TOKENS.get('OAUTH_ENFORCE_SECURE', True)
+    OAUTH_ENFORCE_CLIENT_SECURE = ENV_TOKENS.get('OAUTH_ENFORCE_CLIENT_SECURE', True)

 ##### ADVANCED_SECURITY_CONFIG #####
 ADVANCED_SECURITY_CONFIG = ENV_TOKENS.get('ADVANCED_SECURITY_CONFIG', {})