DPC-5127 update portal to use multiple OIDC

[jdettmannnava]

NOT FOR MERGE UNTIL CMS APPROVAL

🎫 Ticket

https://jira.cms.gov/browse/DPC-5127

🛠 Changes

• Devise gems removed
• Login-dot-gov provider renamed from openid_connect to login_dot_gov
• Devise functionality manually restored
• Tests updated

ℹ️ Context

We are moving to a multi-IDP environment. These IDPs use the OIDC protocol. Because of complexity, the Devise authentication gem only supports one openid_connect provider via the omniauth_openid_connect gem. Fortunately, we use very little Devise functionality, so removing the gem and replacing the necessary parts was not very extensive.

🧪 Validation

Automated tests updated to handle a world without devise.

Successfully logged in and out from localhost.
Successfully failed invitation flow.
Successfully passed invitation flow.

Post-Deploy Actions

After deployment, the following SQL will need to run in dpc-portal. This should not be a problem, as we are not in upper environments.
UPDATE users set provider = 'login_dot_gov';

[lukey-luke]

probably don't need to change this config setting

[jdettmannnava]

Not necessary, but I found that it was difficult to analyze the logs because of their colorization, so I would prefer to leave this change in.

[lukey-luke]

I'm wondering if this .find_or_create_by() needs to be updated to include login_dot_gov
e.g.

@user = User.find_or_create_by!(provider: :login_dot_gov,  uid: user_info['sub']) do |user_to_create|

[jdettmannnava]

Yup, this needs to change

[lukey-luke]

✅ updated redirects look good
✅ tests are passing
✅ manual data update makes sense to me given existing 'openid_connect' for user.provider for current users.

Only open question I have is - does this capture intended behavior for provider column for newly created users?
I'll poke around more w/ local testing w/ creating a new invite later today

[lukey-luke]

I confirmed that provider is set correctly for new users! Thanks for updating!

[MEspositoE14s]

Makes sense to me!