From d47b5e6a90cddb724fb19307f10d3089a08a3445 Mon Sep 17 00:00:00 2001
From: Fabre Florian <ffabre@hybird.org>
Date: Thu, 20 Nov 2025 10:00:31 +0100
Subject: [PATCH] =?UTF-8?q?=F0=9F=A9=B9(backend)=20fix=20oidc=20token=20st?=
 =?UTF-8?q?orage=20configuration?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Disable OIDC_STORE_ACCESS_TOKEN & OIDC_STORE_REFRESH_TOKEN as default
to prevent authentication issues when the Find service is not used.

Signed-off-by: Fabre Florian <ffabre@hybird.org>
---
 env.d/development/common | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/env.d/development/common b/env.d/development/common
index cdd734b5..f1a70811 100644
--- a/env.d/development/common
+++ b/env.d/development/common
@@ -50,9 +50,9 @@ LOGOUT_REDIRECT_URL=http://localhost:3000
 OIDC_REDIRECT_ALLOWED_HOSTS=["http://localhost:8083", "http://localhost:3000"]
 OIDC_AUTH_REQUEST_EXTRA_PARAMS={"acr_values": "eidas1"}
 
-# Store OIDC tokens in the session
-OIDC_STORE_ACCESS_TOKEN = True
-OIDC_STORE_REFRESH_TOKEN = True # Store the encrypted refresh token in the session.
+# Store OIDC tokens in the session. Needed by search/ endpoint.
+# OIDC_STORE_ACCESS_TOKEN = True
+# OIDC_STORE_REFRESH_TOKEN = True # Store the encrypted refresh token in the session.
 
 # Must be a valid Fernet key (32 url-safe base64-encoded bytes)
 # To create one, use the bin/fernetkey command.