Skip to content
This repository has been archived by the owner on Nov 1, 2023. It is now read-only.

User Assignment Required Set By Default #1328

Closed
nharper285 opened this issue Oct 4, 2021 · 0 comments
Closed

User Assignment Required Set By Default #1328

nharper285 opened this issue Oct 4, 2021 · 0 comments
Labels
enhancement New feature or request

Comments

@nharper285
Copy link
Contributor

nharper285 commented Oct 4, 2021

For service principals created by the OneFuzz platform during deployment, we default to setting "User Assignment Required" to false. In the deployment script, this is controlled by the parameter app_role_assignment_required.

Proposed change: set app_role_assignment_required to true by default, and add the user who deploys a given instance of OneFuzz as a pre-authorized user. The owner/deployer could then add additional users, as necessary. We could enable this functionality by including a deployment parameter that takes in an authenticated group, as chosen by the deploying user.

AB#39994145

@nharper285 nharper285 added the enhancement New feature or request label Oct 4, 2021
@ghost ghost added the Needs: triage label Oct 4, 2021
@ghost ghost locked as resolved and limited conversation to collaborators Aug 10, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
enhancement New feature or request
Projects
None yet
Development

No branches or pull requests

2 participants