Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Adds basic integration with Auth0, allowing users from the connected Auth0 tenant to authenticate using the Auth0 login page.
If the user HASN'T authenticated with the app before, successful authentication results in the creation of a basic Django user with an unusable password
*
and no special privileges. This user then becomes the active user for the remainder of the app session.If the user HAS authenticated with the app before, successful authentication results in the existing Django user being found (via a linked
IDPProfile
object with a matchingprovider_user_id
value), and becoming the active user for the remainder of the app session*
Setting an 'unusable password' in Django prevents the user from logging in via Django's regular email/password mechanisms, and also prevents them from initialising a password reset from Django - meaning they can only authenticate via Auth0.