Skip to content

Fix : disable omniauth profile edition#955

Merged
BarbaraOliveira13 merged 26 commits intodevelopfrom
fix/disable-omniauth-profile-edition
Apr 3, 2026
Merged

Fix : disable omniauth profile edition#955
BarbaraOliveira13 merged 26 commits intodevelopfrom
fix/disable-omniauth-profile-edition

Conversation

@moustachu
Copy link
Copy Markdown
Member

@moustachu moustachu commented Mar 11, 2026
edited
Loading

🎩 Description

This PR "fixes" (FranceConnect team point of view) the behavior of the OMNIAUTH_FORCE_PROFILE_SYNC flag.

There is a new configuration variable OMNIAUTH_FORCE_PROFILE_SYNC_FIELDS for selecting the fields concerned by the profile synchronization.
This only works with the name and email (which is the original default behavior).

When email is not the list of synchronized field, the user has to follow the standard workflow of validating the new email address.

This also fixes a SSO caveats where you need to type in your current password when changing your email :

  • both SSO and standard email / password sign in are enabled
  • the user only uses SSO sign in and has never set his password
  • the user change hi email address
  • the user is asked for his current password which doesn't exists
  • the account form doesn't accept empty password
  • the user needs to log out and use the reset password before changing is email

The fixes disable the password check when there isn't any password set AND the user is currently signed in with SSO.

Testing

You need a platform with with SSO configuration and the related flag enabled.
But this has been tested by the FranceConnect qualification team on 2 platform.

🛠️ If your PR introduces or updates an Override

  • Add the label "override:pending" in your PR
  • Add the corresponding label based on the review deadline category (when this override must be checked):
    • WHEN BACKPORT 0.29 ·
    • BEFORE MIGRATION 0.31 ·
    • WAITING FOR PR UPSTREAM ·
    • OTHER
  • Add the link to the related Decidim issue or PR (if exist).

Quentinchampenois and others added 25 commits June 24, 2025 11:23
@Quentinchampenois
release: v3.2.0
38d317c 
release: v3.2.0
@luciegrau
Merge pull request #848 from OpenSourcePolitics/develop
94a5785 
Release: 3.3.0
@Quentinchampenois
feat: Release 3.3.0 (#849)
9387f76
@Quentinchampenois
release: 3.3.1 (#853)
fb8ab5f 
* feat: Release 3.3.0

* fix: Remove assembly update for Decidim Geo (#852)
@luciegrau
Merge pull request #860 from OpenSourcePolitics/develop
067f4c6 
release: 3.3.2
@luciegrau
Merge pull request #884 from OpenSourcePolitics/develop
82dabd6 
Release 3.4.0
@moustachu
Merge pull request #904 from OpenSourcePolitics/develop
a9683b9 
Release 3.6.0
@moustachu
[v3.7.0] Merge pull request #925 from OpenSourcePolitics/develop
fcb5511 
Release 3.7.0
@moustachu
update package files for 0.29.5
61d247d
@moustachu
missing static docs
4848d96
@moustachu
fix: restore email_to_statutory_representative from extra user fields…
43fa6e8 
… module
@moustachu
fix: disable profile fields when omniauth profile sync is enabled
cf79403
@BarbaraOliveira13
Merge pull request #936 from OpenSourcePolitics/develop Release 3.8.0
15d2f5f 
Release 3.8.0
@BarbaraOliveira13 @moustachu
Update issue templates
b05de59 
Add tracking issue templates
@Stef-Rousset @moustachu
bump: budgets_booth to fix last popup voting (#939)
bbb2a66 
This PR bumps budgets_booth to its latest commit, to fix problem with the last voting popup.
OpenSourcePolitics/intern-tasks#317
@AyakorK
Merge pull request #943 from OpenSourcePolitics/develop
038405a 
Release 3.9.1
@moustachu
Merge tag 'v3.7.0' into fix/disable-omniauth-profile-edition
0d16010
@Stef-Rousset @moustachu
fix: update default partial to display custom publik translation (#944)
072662a 
* fix: udpate default partial to display custom publik translation

* style: update with rubocop
@moustachu
fix: Unescape HTML entities in component index checkbox tree (#948)
b46a603 
* fix: Unescape HTML entities in component index checkbox tree (deface)

* fix: system test
@Stef-Rousset @moustachu
fix: awesome private body registration (#949)
3fed86a 
* fix: update creat_proposal extends to integrate private body from awesome

* test: update creat_proposal test with private body
@Stef-Rousset @moustachu
fix: special characters in editor (#947)
946e616 
* fix: add validation on editor image form to avoid special characters

* fix: add javascript to handle errors on editor form

* test: add tests
@BarbaraOliveira13 @moustachu
fix: stop digest mail (#945)
22e41a9 
* Revert "Update issue templates"

This reverts commit 5a37ad4.

* add condition

* add condition in a method decidim_ai_disabled?

* update default flag of decidim_ai to false

* update default value and delete decidim_ai reference in text mail

* debug CI, search clue

* fix CI by disabled Redis for Decidim_Ai in test

* initialize decidim_ai_enabled to false before secrets

* fix CI

* fix CI

* test CI

* add config analyzer in first place

* clean

* refacto

---------

Co-authored-by: moustachu <moustachu@opensourcepolitics.eu>
@Stef-Rousset @moustachu
bump: budgets booth 0.29 (#951)
76ae789 
* feat: update budgets_booth to latest commit

* fix: add regenerator-runtime dependence to fix error
@moustachu
feat: ominiauth sync fields are configurable with ENV vars
f9a6c31
@moustachu
Merge tag 'v3.9.2' into fix/disable-omniauth-profile-edition
8b4e772
@moustachu moustachu added Override:pending Override en attente de review / nettoyage Before migration 0.31 Date / situation prévue pour re-valider la pertinence de l'override ou besoin de supprimer labels Mar 11, 2026
BarbaraOliveira13
BarbaraOliveira13 approved these changes Mar 12, 2026
View reviewed changes
Copy link
Copy Markdown
Collaborator

@BarbaraOliveira13 BarbaraOliveira13 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM 👍 Let me know If you need a third product review after deployment ...

@BarbaraOliveira13 BarbaraOliveira13 merged commit ae36aef into develop Apr 3, 2026
23 of 26 checks passed
@BarbaraOliveira13 BarbaraOliveira13 deleted the fix/disable-omniauth-profile-edition branch April 3, 2026 08:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@AyakorK AyakorK AyakorK approved these changes

@BarbaraOliveira13 BarbaraOliveira13 BarbaraOliveira13 approved these changes

Assignees

No one assigned

Labels

Before migration 0.31 Date / situation prévue pour re-valider la pertinence de l'override ou besoin de supprimer Override:pending Override en attente de review / nettoyage

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@moustachu @AyakorK @BarbaraOliveira13 @Quentinchampenois @luciegrau @Stef-Rousset