You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The new user correctly gets the guest role but with the permissions of USER_DEFAULT_SCOPES. Additionally the user role has no permissions anymore. So it seems I've renamed the user role to guest and overwritten the built in guest role.
Expected behavior
My initial idea was to have new users automatically created with guest role.
The text was updated successfully, but these errors were encountered:
So a new user will get the role guest and access scopes from both default lists, while the role user doesn't match either of them and gets none.
It's probably unexpected for most people that you can end up getting access scopes from both lists this way, or that you can remove all access scopes for the role user, so it might be prudent to revert some of these changes and make the builtin roles hardcoded again, and only have their scopes configurable. Or properly document this behaviour, which might be why the docs label has been added to this issue. 😃
A simple solution to this specific issue though, where OP wishes to change default role and continue to use all builtin roles, might be to introduce a new setting, SIGNUP_DEFAULT_ROLES = ["guest"], and use that when creating a new user, instead of USER_ROLES.
@satterly, do you have any input on how this should be solved? If not, I can make a PR and we can take it from there.
Issue Summary
Sorry, but I still don't get how to set
guest
as default role for new users as requested in #1344 and implemented #1346.Environment
Auth enabled? Yes
Auth provider? OpenID
Customer views? Yes
To Reproduce
The new user correctly gets the
guest
role but with the permissions ofUSER_DEFAULT_SCOPES
. Additionally theuser
role has no permissions anymore. So it seems I've renamed the user role to guest and overwritten the built in guest role.Expected behavior
My initial idea was to have new users automatically created with
guest
role.The text was updated successfully, but these errors were encountered: