diff --git a/roles/ipsilon/files/oidc_scopes/freshmaker.py b/roles/ipsilon/files/oidc_scopes/freshmaker.py
new file mode 100644
index 0000000000..beb5d1108a
--- /dev/null
+++ b/roles/ipsilon/files/oidc_scopes/freshmaker.py
@@ -0,0 +1,14 @@
+from __future__ import absolute_import
+
+from ipsilon.providers.openidc.plugins.common import OpenidCExtensionBase
+
+
+class OpenidCExtension(OpenidCExtensionBase):
+    name = 'freshmaker'
+    display_name = 'Freshmaker Rebuilds'
+    scopes = {
+        'https://pagure.io/freshmaker/manual-trigger': {
+            'display_name': 'Permission to submit manual triggers of rebuilds',
+            'claims': [],
+        },
+    }
diff --git a/roles/ipsilon/tasks/main.yml b/roles/ipsilon/tasks/main.yml
index eefec73036..ede0c4205d 100644
--- a/roles/ipsilon/tasks/main.yml
+++ b/roles/ipsilon/tasks/main.yml
@@ -59,7 +59,8 @@
         dest=/usr/lib/python2.7/site-packages/ipsilon/providers/openidc/plugins/{{item}}.py
         owner=root group=root mode=0644
   when: env == "staging"
-  with_items: []
+  with_items:
+  - freshmaker
   notify:
   - reload apache
   tags:
diff --git a/roles/ipsilon/templates/configuration.conf b/roles/ipsilon/templates/configuration.conf
index 3cc50dbc29..0ad1bb7bbd 100644
--- a/roles/ipsilon/templates/configuration.conf
+++ b/roles/ipsilon/templates/configuration.conf
@@ -25,7 +25,7 @@ global enabled=persona,openid,saml2,openidc
 {% if env == "production" %}
 openidc enabled extensions=fedora-account,mbs,beaker,waiverdb,odcs,wiki
 {% else %}
-openidc enabled extensions=fedora-account,mbs,beaker,waiverdb,odcs,wiki
+openidc enabled extensions=fedora-account,mbs,beaker,waiverdb,odcs,wiki,freshmaker
 {% endif %}
 
 {% if env == 'staging' %}