included email profile scopes for token renewal and removed redirect url from the logout request

lahirujayathilake · lahirujayathilake · commit a723111d1032 · 2025-04-28T15:44:16.000+05:30
diff --git a/django_airavata/apps/auth/backends.py b/django_airavata/apps/auth/backends.py
@@ -160,7 +160,7 @@ def _get_token_and_userinfo_from_refresh_token(self,
         token_url = settings.KEYCLOAK_TOKEN_URL
         userinfo_url = settings.KEYCLOAK_USERINFO_URL
         verify_ssl = settings.KEYCLOAK_VERIFY_SSL
-        oauth2_session = OAuth2Session(client_id, scope='openid')
+        oauth2_session = OAuth2Session(client_id, scope='openid profile email')
         verify = verify_ssl
         if verify_ssl and hasattr(settings, 'KEYCLOAK_CA_CERTFILE'):
             verify = settings.KEYCLOAK_CA_CERTFILE
diff --git a/django_airavata/apps/auth/views.py b/django_airavata/apps/auth/views.py
@@ -145,10 +145,7 @@ def handle_login(request):
 
 def start_logout(request):
     logout(request)
-    redirect_url = request.build_absolute_uri(
-        resolve_url(settings.LOGOUT_REDIRECT_URL))
-    return redirect(settings.KEYCLOAK_LOGOUT_URL +
-                    "?redirect_uri=" + quote(redirect_url))
+    return redirect(settings.KEYCLOAK_LOGOUT_URL)
 
 
 def callback(request):
