From b1415dc3150a8db337d09fd6dc7db7b7d312b533 Mon Sep 17 00:00:00 2001
From: Benjamin Dauvergne <bdauvergne@entrouvert.com>
Date: Tue, 2 Jul 2019 23:33:22 +0200
Subject: [PATCH] auth_fc: force acr_values to eidas1 (#34448)

---
 src/authentic2_auth_fc/views.py | 1 +
 tests/auth_fc/test_auth_fc.py   | 1 +
 2 files changed, 2 insertions(+)

diff --git a/src/authentic2_auth_fc/views.py b/src/authentic2_auth_fc/views.py
index 6e3b4f54..10088737 100644
--- a/src/authentic2_auth_fc/views.py
+++ b/src/authentic2_auth_fc/views.py
@@ -82,6 +82,7 @@ def ask_authorization(request, scopes, logger):
         'response_type': 'code',
         'state': state,
         'nonce': state,
+        'acr_values': 'eidas1',
     }
     logger.debug('query string %s', params)
     url = '{0}?{1}'.format(app_settings.authorize_url, urlencode(params))
diff --git a/tests/auth_fc/test_auth_fc.py b/tests/auth_fc/test_auth_fc.py
index 3c02d768..0e3e6558 100644
--- a/tests/auth_fc/test_auth_fc.py
+++ b/tests/auth_fc/test_auth_fc.py
@@ -84,6 +84,7 @@ def check_authorization_url(url):
     assert parsed['state'] == parsed['nonce']
     assert 'response_type' in parsed
     assert parsed['response_type'] == 'code'
+    assert parsed['acr_values'] == 'eidas1'
     return parsed['state']
 
 
-- 
2.20.1