Apply for QTS in England - Authentication
Currently our application has 2 types of users:
- Teacher (applicants)
- Staff (Ops team e.g. assessors)
Teachers
Currently our applicants/teachers use GOV.UK One Login in order to sign into our application and create or see their application forms.
We have adopted GOV.UK One Login using OAuth via the Omniauth Gem & Omiauth OpenId Connect Gem. GOV.UK One Login required a sector identifier where we our service uses the shared DfE. The initialization of this can be found here.
Staff
Currently our staff members use Microsoft Entra ID in order to sign in and assess applications.
We have adopted GOV.UK One Login using OAuth via the Omniauth Entra ID gem. The initialization of this happens via the Devise gem here. This is then configured onto the Staff model.
Note that client secrets expire every year and on expiry may prevent staff members from authenticating.