Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Disable the login ID if the corresponding OAuth identity exists #412

Open
louischan-oursky opened this issue Feb 13, 2020 · 0 comments
Open

Disable the login ID if the corresponding OAuth identity exists #412

louischan-oursky opened this issue Feb 13, 2020 · 0 comments
Labels
area/User Auth

Comments

@louischan-oursky
Copy link
Contributor

louischan-oursky commented Feb 13, 2020
edited
Loading

Description

It is a new option to enable this behavior.

Regardless of the order the identities were added, for a given user, if a OAuth identity's email matches a login ID of type email, then the login ID cannot be used to authenticate in the future.

For example, suppose User A has the login ID usera@gmail.com. Later they link their Google account to their account. Existing sessions of the login ID usera@gmail.com is still valid. However, User A cannot use usera@gmail.com to authenticate with password anymore. They must authenticate with Google.

Edit

It would result in better UX if Auth UI can detect this condition and, instead of showing an error, redirect the user to the IdP authorization endpoint with login_hint set.

Portal Design

Add a new field for this option.

Blog Post Specification

Blog Post of the Feature Release

Open Questions

Put a list of open questions here before a complete design / specification is decided

Related Issues

  • Server Issues
  • Client Issues
  • Guides Issues
@louischan-oursky louischan-oursky mentioned this issue Feb 13, 2020
Closed
@chpapa chpapa added this to the 2.3 milestone Feb 14, 2020
@chpapa chpapa modified the milestones: 2.4, 2.3 Feb 24, 2020
@chpapa chpapa modified the milestones: 2.3, 2.4 Mar 2, 2020
@chpapa chpapa removed this from the 2.4 milestone May 4, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/User Auth
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@chpapa @louischan-oursky