Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

How can I limit GitHub authentication only for users in my GitHub organization #83

Closed
azatsafin opened this issue Jun 1, 2022 · 2 comments
Closed

How can I limit GitHub authentication only for users in my GitHub organization #83

azatsafin opened this issue Jun 1, 2022 · 2 comments

Comments

@azatsafin
Copy link

Hello, I would like to use GitHub user accounts and authenticate that user through Cognito. I have installed shim and it works so that GitHub users could authenticate via their GitHub accounts. I would like to limit users who can get authentication via GitHub by limiting them to my organization only. Is it possible? if so, could you please give advice on how to archive that?
@TimothyJones
Copy link
Owner

You can see some discussion on this topic here - #26

I recommend you put the user's organisations into the userinfo response, and then read those in the app to determine whether they should have access. This means a user might be able to log in, federate into Cognito, but then not have access to your app.

@TimothyJones
Copy link
Owner

I'll close this for now - please feel free to reopen if you have further questions or the discussion on the other issue doesn't help.

@snyk-bot snyk-bot mentioned this issue Feb 22, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@TimothyJones @azatsafin