[feat] Add user_id scope to credentialsApiClient (#28737)

Now that we're actively using the LMS_USER_ID inside credentials to identify users, we need to make sure that users created by notify_credentials are including it in the jwt scopes when authenticated with credentials.

[feat] Add user_id scope to credentialsApiClient (#28737)
Now that we're actively using the LMS_USER_ID inside credentials to identify users, we need to make sure that users created by notify_credentials are including it in the jwt scopes when authenticated with credentials.
6f44841d · Thomas Tracy · GitHub · b1b75094 · 6f44841d
Unverified Commit 6f44841d authored 3 years ago by Thomas Tracy Committed by GitHub 3 years ago
--- a/openedx/core/djangoapps/credentials/utils.py
+++ b/openedx/core/djangoapps/credentials/utils.py
@@ -34,7 +34,8 @@ def get_credentials_api_client(user, org=None):
        org (str): Optional organization to look up the site config for, rather than the current request

    """
-    jwt = create_jwt_for_user(user)
+    scopes = ['email', 'profile', 'user_id']
+    jwt = create_jwt_for_user(user, scopes=scopes)

    if org is None:
        url = CredentialsApiConfig.current().internal_api_url  # by current request