Fixed
Pinned fields
Click on the next to a field label to start pinning.
Details
Assignee
Nimisha AsthagiriNimisha Asthagiri(Deactivated)Reporter
Julia EskewJulia Eskew(Deactivated)Removal Date
Nov 18, 2019Deprecation Proposal Accepted Date
Nov 04, 2019Priority
Unset
Details
Details
Assignee
Nimisha Asthagiri
Nimisha Asthagiri(Deactivated)
Reporter
Julia Eskew
Julia Eskew(Deactivated)
Removal Date
Nov 18, 2019
Deprecation Proposal Accepted Date
Nov 04, 2019
Priority
UnsetZendesk Support
Zendesk Support
Zendesk Support
Created September 13, 2019 at 9:41 PM
Updated March 3, 2020 at 7:49 PM
Resolved March 3, 2020 at 7:49 PM
Removal
The removal of django-oauth2-provider (DOP) & OpenId Connect (OIDC) for AuthN purposes has been a long-term project to which many people have contributed. , , and have devoted their last two hackathons to the cause of terminating its usage - details are here:
https://openedx.atlassian.net/wiki/spaces/PLAT/pages/941391882/Hackathon+XXI+Deprecating+DOP
To remove DOP usage permanently, we would:
archive, as outlined in OEP-14, the edX-owned fork here: https://github.com/edx/django-oauth2-provider
remove the DOP dependency from edx-platform
perform all needed edx-platform code removal caused by the dependency removal
Replacement
We're instead moving to using django-oauth-toolkit (DOT) and Json Web Tokens (JWTs) for AuthN across the entire platform. See the ADR on Migrating to DOT.
Multiple IDAs currently authenticate using DOT/JWTs, so edx-platform already supports this type of authentication.
Target Dates
We'd like to remove the DOP dependency/code/repo in the next Open edX release that includes the upgrade to Django 2 - in order to expedite our effort in upgrading Django.
Additional Notes
Prior to removal, the following steps need to take place:
Update Insights to move from DOP/OIDC to DOT/JWT AuthN as detailed here:
Update Veda to move to DOT/JWT AuthN as detailed here: