Uploaded image for project: 'Moodle'
  1. Moodle
  2. MDL-67556

Oauth2 : "Require email verification" is hardcoded to true for custom issuers.

XMLWordPrintable

    • MOODLE_36_STABLE, MOODLE_37_STABLE, MOODLE_38_STABLE, MOODLE_39_STABLE
    • 1
    • 4.0 holding pattern 7, 4.0 holding pattern 8, 4.0 holding pattern 9

      Hello,

      The "Require email verification" is unavailable for custom issuers, as the code explicitely enables it only for well-known issuers like Google or Facebook.

      We use our own OIDC provider in our instution, and all services require login through it. In our case, it makes no sense for an user to exist outside this OIDC provider.

      As such, we would like this button to be available in the edition of our issuer.

      In addition, the OIDC specification provides a "email_verified" standard claim, indicating that the provider verified this end user's email. It would be interesting to skip the email verification phase if such a claim is found.

            Unassigned Unassigned
            kévinsztern Kévin Sztern
            Votes:
            10 Vote for this issue
            Watchers:
            16 Start watching this issue

              Created:
              Updated:
              Resolved:

                Error rendering 'clockify-timesheets-time-tracking-reports:timer-sidebar'. Please contact your Jira administrators.