Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[auth] Improve how we define admin accounts #1868

Closed
humphd opened this issue Mar 5, 2021 · 1 comment · Fixed by #2344
Closed

[auth] Improve how we define admin accounts #1868

humphd opened this issue Mar 5, 2021 · 1 comment · Fixed by #2344
Assignees
@humphd
Labels
area: back-end area: deployment Production or Staging deployment area: microservices type: enhancement New feature or request type: security Security concerns

Comments

@humphd
Copy link
Contributor

humphd commented Mar 5, 2021

In #1796, we are defining admin accounts via an env variable with ADMINISTRATORS being passed in. This is probably OK for one super-admin, but the rest can be defined in Firebase with the #1642 (cc @chrispinkney).
@humphd humphd added type: enhancement New feature or request area: back-end area: deployment Production or Staging deployment type: security Security concerns area: microservices labels Mar 5, 2021
@humphd humphd mentioned this issue Mar 5, 2021
Merged
@humphd
Copy link
Contributor Author

humphd commented Oct 8, 2021

I don't think we're using the ADMINISTRATORS env stuff at all in the auth service. We do in the old backend, see

telescope/src/backend/data/admin.js

Line 6 in 29951b7

const administrators = process.env.ADMINISTRATORS ? process.env.ADMINISTRATORS.split(' ') : [];
.

Let's add it to the auth service as well, so we can bootstrap a few super-user admins into the system without the chicken-and-egg problem of database access.

humphd added a commit to humphd/telescope that referenced this issue Oct 8, 2021
@humphd
Fix Seneca-CDOT#1868: Use ADMINISTRATORS env var in auth service
923d98e
@humphd humphd mentioned this issue Oct 8, 2021
Merged
humphd added a commit to humphd/telescope that referenced this issue Oct 8, 2021
@humphd
Fix Seneca-CDOT#1868: Use ADMINISTRATORS env var in auth service
978cfc2
humphd added a commit to humphd/telescope that referenced this issue Oct 8, 2021
@humphd
Fix Seneca-CDOT#1868: Use ADMINISTRATORS env var in auth service
045197a
humphd added a commit to humphd/telescope that referenced this issue Oct 8, 2021
@humphd
Fix Seneca-CDOT#1868: Use ADMINISTRATORS env var in auth service
68a9aff
humphd added a commit to humphd/telescope that referenced this issue Oct 8, 2021
@humphd
Fix Seneca-CDOT#1868: Use ADMINISTRATORS env var in auth service
0e16b18
humphd added a commit that referenced this issue Oct 9, 2021
@humphd
Fix #1868: Use ADMINISTRATORS env var in auth service
caeb527
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@humphd humphd

Labels
area: back-end area: deployment Production or Staging deployment area: microservices type: enhancement New feature or request type: security Security concerns
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Fix #1868: Use ADMINISTRATORS env var in auth service humphd/telescope
2 participants
@humphd @birtony