Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement a user status #9077

Closed
bernd opened this issue Oct 5, 2020 · 0 comments · Fixed by #9374
Closed

Implement a user status #9077

bernd opened this issue Oct 5, 2020 · 0 comments · Fixed by #9374
Assignees
@mpfz0r
Labels
bug
Milestone
4.0.0

Comments

@bernd
Copy link
Member

bernd commented Oct 5, 2020

It's currently not possible to enable/disable users in our database. Authentication services will have this capability and we should be able to mirror that status when syncing users.

We should probably use an actual status enum instead of a simple flag so we can introduce more stauses later. (e.g. DELETED)
@bernd bernd added the bug label Oct 5, 2020
@bernd bernd added this to the 4.0.0 milestone Oct 5, 2020
@mpfz0r mpfz0r self-assigned this Nov 3, 2020
@mpfz0r mpfz0r mentioned this issue Nov 5, 2020
Merged
bernd pushed a commit that referenced this issue Nov 9, 2020
@mpfz0r
Implement and enforce user account status (#9374)
ae427f1 
* Add AccountStatus field to User
* Try to cope with incomplete LDAP user entries.
 - If we can't get the userNameAttribute, simply use the username
 - Fill in dummy email address if none can't be found
* Prevent user logins for disabled accounts
* Add account_status to UserSummary
* Add endpoint to modify user acount status
* Add auditevent
* Double check that an account is enabled in AD
  This deliberately ignores the pre-auth flag set by the
  HTTPHeaderAuthRealm.
* Fix review comments

Fixes #9077
@kmerz kmerz mentioned this issue Nov 10, 2020
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@mpfz0r mpfz0r

Labels
bug
Projects
None yet
Milestone
4.0.0
Development

Successfully merging a pull request may close this issue.

Implement and enforce user account status Graylog2/graylog2-server
2 participants
@bernd @mpfz0r