Skip to main content

Apply for QTS in England - Authentication

Currently our application has 2 types of users:

  1. Teacher (applicants)
  2. Staff (Ops team e.g. assessors)

Teachers

Currently our applicants/teachers use GOV.UK One Login in order to sign into our application and create or see their application forms.

We have adopted GOV.UK One Login using OAuth via the Omniauth Gem & Omiauth OpenId Connect Gem. GOV.UK One Login required a sector identifier where we our service uses the shared DfE. The initialization of this can be found here.

Staff

Currently our staff members use Microsoft Entra ID in order to sign in and assess applications.

We have adopted GOV.UK One Login using OAuth via the Omniauth Entra ID gem. The initialization of this happens via the Devise gem here. This is then configured onto the Staff model.

Note that client secrets expire every year and on expiry may prevent staff members from authenticating.