Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Ability to block a user with an attribute #1674

Open
seanhamlin opened this issue Feb 20, 2020 · 1 comment
Open

Ability to block a user with an attribute #1674

seanhamlin opened this issue Feb 20, 2020 · 1 comment
Labels
1-api-auth API & Authentication subsystem 9-security Security subsystem

Comments

@seanhamlin
Copy link
Contributor

Describe the feature

At the moment there is no way to 'block' a user in Lagoon, instead you must remove all of their groups to effectively revoke access. This is not ideal as you are altering the user object and making things like auditing harder in the future. It also is harder to re-instate the user in the future (in the case the block was temporary).

Ideal solution

There is an additional attribute on a user object active to which is 1 for OK, and 0 for blocked. If blocked, the user cannot login to Lagoon, nor will their GraphQL user JWTs work.
@seanhamlin seanhamlin added 1-api-auth API & Authentication subsystem 9-security Security subsystem labels Feb 20, 2020
@tobybellwood
Copy link
Member

Possibly can leverage with keycloak

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
1-api-auth API & Authentication subsystem 9-security Security subsystem
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@tobybellwood @seanhamlin