The users are now redirect to the Maizey endpoint for the LTI launch.
If the user is a super user then, user will be displayed home page so that they can have access to Django Admin view. Otherwise they will be redirected Maizey URL with JWT.
Note: After implementing CSP the workflow with redirect might slightly change.
Input needed on this: we could continue conversation in slack. But I want to start the conversation here.
Also I am starting to think if we even needs to login every user who launched our redirect tool. Since goal for the ET team have the tool in front of all students in the coming Fall term. (So why do we need those user in Django table?)
We might at the least need to login the user who need Django admin console access. Who are mostly going to be TL-Dev. We could recognize then with one of the LTI custom Launch variable `is_root_account_user'
Testing:
Test as user who has access to Django admin console
Test as Student or another role is fine as well. only thing is user role should not have a super user access.
Fixes #15
The users are now redirect to the Maizey endpoint for the LTI launch.
If the user is a super user then, user will be displayed home page so that they can have access to Django Admin view. Otherwise they will be redirected Maizey URL with JWT.
Note: After implementing CSP the workflow with redirect might slightly change.
Input needed on this: we could continue conversation in slack. But I want to start the conversation here.
Testing: