Skip to content

Introduce sign-up restrictions #6372

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
gtsiolis opened this issue Oct 23, 2021 · 2 comments
Open

Introduce sign-up restrictions #6372

gtsiolis opened this issue Oct 23, 2021 · 2 comments
Labels
component: dashboard feature: admin dashboard meta: never-stale This issue can never become stale needs visual design self-hosted team: webapp Issue belongs to the WebApp team type: feature request New feature or request user experience

Comments

@gtsiolis
Copy link
Contributor

Problem to solve

Given that the role of self-hosted in our strategy becomes more relevant over time, more feature requests and needs will show up in the long run. See relevant RFC (internal).

One of these needs is the ability to provide more fine grained control over sign ups. See relevant discussion.

Proposal

TBD (To be discussed)

The following scenarios could be helpful:

  1. Disable new sign ups
  2. Require approval for new sign ups
  3. Require user email confirmation
  4. Allow sign ups only for specific email domains
@gtsiolis gtsiolis added feature: admin dashboard meta: never-stale This issue can never become stale labels Nov 30, 2021
@corneliusludmann
Copy link
Contributor

The only mitigation we have currently in place is to block new users (optionally with a passlist):

gitpod/chart/values.yaml

Lines 281 to 283 in baa41ec

blockNewUsers:
enabled: false
passlist: []

gitpod/.werft/values.dev.yaml

Lines 45 to 48 in baa41ec

blockNewUsers:
enabled: true
passlist:
- "gitpod.io"

gitpod/installer/example-config.yaml

Lines 3 to 5 in baa41ec

blockNewUsers:
enabled: false
passlist: []

@mrsimonemms
Copy link
Contributor

mrsimonemms commented Jan 13, 2022
edited
Loading

An additional consideration could be to allow sign ups from specific organisations. I'm not sure how this would work with BitBucket (and any future oauth-providers we support), but it should be possible with GitHub and GitLab.

For the record, the blockNewUsers is supported natively by the Installer as well and the configuration is identical to @corneliusludmann's example above:

gitpod/installer/example-config.yaml

Lines 3 to 5 in 72f109c

blockNewUsers:
enabled: false
passlist: []

@mrsimonemms mrsimonemms added the team: delivery Issue belongs to the self-hosted team label Jan 13, 2022
@mrsimonemms mrsimonemms mentioned this issue Jan 27, 2022
Closed
2 tasks
@corneliusludmann corneliusludmann removed the team: delivery Issue belongs to the self-hosted team label May 2, 2022
@gtsiolis gtsiolis mentioned this issue Feb 15, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
component: dashboard feature: admin dashboard meta: never-stale This issue can never become stale needs visual design self-hosted team: webapp Issue belongs to the WebApp team type: feature request New feature or request user experience
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@gtsiolis @mrsimonemms @corneliusludmann