docs(security): remove redundant examples, point toward other docs page instead

sfirke · web-flow · commit 62ce3970e032 · 2025-05-16T16:12:00.000-04:00
These were getting stale and not being updated with the newer examples on the Security page. More DRY and maintainable to have them all in a single place.
diff --git a/examples/oauth/config.py b/examples/oauth/config.py
@@ -34,110 +34,13 @@
 # AUTH_REMOTE_USER : Is for using REMOTE_USER from web server
 AUTH_TYPE = AUTH_OAUTH
 
-OAUTH_PROVIDERS = [
-    {
-        "name": "twitter",
-        "icon": "fa-twitter",
-        "remote_app": {
-            "client_id": os.environ.get("TWITTER_KEY"),
-            "client_secret": os.environ.get("TWITTER_SECRET"),
-            "api_base_url": "https://api.twitter.com/1.1/",
-            "request_token_url": "https://api.twitter.com/oauth/request_token",
-            "access_token_url": "https://api.twitter.com/oauth/access_token",
-            "authorize_url": "https://api.twitter.com/oauth/authenticate",
-            "fetch_token": lambda: session.get(
-                "oauth_token"
-            ),  # DON'T DO THIS IN PRODUCTION
-        },
-    },
-    {
-        "name": "google",
-        "icon": "fa-google",
-        "token_key": "access_token",
-        "remote_app": {
-            "client_id": os.environ.get("GOOGLE_KEY"),
-            "client_secret": os.environ.get("GOOGLE_SECRET"),
-            "api_base_url": "https://www.googleapis.com/oauth2/v2/",
-            "client_kwargs": {"scope": "email profile"},
-            "request_token_url": None,
-            "access_token_url": "https://accounts.google.com/o/oauth2/token",
-            "authorize_url": "https://accounts.google.com/o/oauth2/auth",
-            "jwks_uri": "https://www.googleapis.com/oauth2/v3/certs",
-        },
-    },
-    {
-        "name": "azure",
-        "icon": "fa-windows",
-        "token_key": "access_token",
-        "remote_app": {
-            "client_id": os.environ.get("AZURE_APPLICATION_ID"),
-            "client_secret": os.environ.get("AZURE_SECRET"),
-            "api_base_url": f"https://login.microsoftonline.com/{os.environ.get('AZURE_TENANT_ID')}/oauth2",
-            "client_kwargs": {
-                "scope": "User.read name preferred_username email profile upn",
-                "resource": os.environ.get("AZURE_APPLICATION_ID"),
-            },
-            "request_token_url": None,
-            "access_token_url": f"https://login.microsoftonline.com/"
-            f"{os.environ.get('AZURE_TENANT_ID')}/"
-            "oauth2/token",
-            "authorize_url": f"https://login.microsoftonline.com/"
-            f"{os.environ.get('AZURE_TENANT_ID')}/"
-            f"oauth2/authorize",
-        },
-    },
-    {
-        "name": "okta",
-        "icon": "fa-circle-o",
-        "token_key": "access_token",
-        "remote_app": {
-            "client_id": os.environ.get("OKTA_KEY"),
-            "client_secret": os.environ.get("OKTA_SECRET"),
-            "api_base_url": f"https://{os.environ.get('OKTA_DOMAIN')}.okta.com/oauth2/v1/",
-            "client_kwargs": {"scope": "openid profile email groups"},
-            "access_token_url": f"https://{os.environ.get('OKTA_DOMAIN')}.okta.com/"
-            f"oauth2/v1/token",
-            "authorize_url": f"https://{os.environ.get('OKTA_DOMAIN')}.okta.com/"
-            f"oauth2/v1/authorize",
-            "server_metadata_url": f"https://{os.environ.get('OKTA_DOMAIN')}.okta.com/"
-            f".well-known/openid-configuration",
-        },
-    },
-    {
-        "name": "keycloak",
-        "icon": "fa-key",
-        "token_key": "access_token",
-        "remote_app": {
-            "client_id": os.environ.get("KEYCLOAK_CLIENT_ID"),
-            "client_secret": os.environ.get("KEYCLOAK_CLIENT_SECRET"),
-            "api_base_url": f"https://{os.environ.get('KEYCLOAK_DOMAIN')}/"
-            f"realms/master/protocol/openid-connect",
-            "client_kwargs": {"scope": "email profile"},
-            "access_token_url": f"https://{os.environ.get('KEYCLOAK_DOMAIN')}/"
-            f"realms/master/protocol/openid-connect/token",
-            "authorize_url": f"https://{os.environ.get('KEYCLOAK_DOMAIN')}/"
-            f"realms/master/protocol/openid-connect/auth",
-            "request_token_url": None,
-        },
-    },
-    {
-        "name": "keycloak_before_17",
-        "icon": "fa-key",
-        "token_key": "access_token",
-        "remote_app": {
-            "client_id": os.environ.get("KEYCLOAK_CLIENT_ID"),
-            "client_secret": os.environ.get("KEYCLOAK_CLIENT_SECRET"),
-            "api_base_url": f"https://{os.environ.get('KEYCLOAK_DOMAIN')}/"
-            f"auth/realms/master/protocol/openid-connect",
-            "client_kwargs": {"scope": "email profile"},
-            "access_token_url": f"https://{os.environ.get('KEYCLOAK_DOMAIN')}/"
-            f"auth/realms/master/protocol/openid-connect/token",
-            "authorize_url": f"https://{os.environ.get('KEYCLOAK_DOMAIN')}/"
-            f"auth/realms/master/protocol/openid-connect/auth",
-            "request_token_url": None,
-        },
-    },
-]
+# Uncomment and add provider(s). See templates on the Security documentation page
+# OAUTH_PROVIDERS = [
+#    {
+#        "name": "...",
+#        ...
+#    },
+#]
 
 # Uncomment to setup Full admin role name
 # AUTH_ROLE_ADMIN = 'Admin'
