DocDB icon indicating copy to clipboard operation
DocDB copied to clipboard

Published 20 hours ago verified publisher icon ericvaandering

Add an option to turn off creation of personal accounts

Open ericvaandering opened this issue 7 years ago • 1 comments

This would be useful for instances where Basic Auth still exists since these accounts are not verified to have the right name or e-mail address. Spoofing is possible.

To be considered for 8_8_10, probably.

ericvaandering avatar Dec 28 '17 21:12 ericvaandering

This is fine as an option for 8.8.10. You have mitigated the risk of spoofing an SSO or cert account by not allowing special characters in the created username, so an SSO or cert username cannot be entered.

lauramengel avatar Jun 15 '18 13:06 lauramengel