teamcity-oauth icon indicating copy to clipboard operation
teamcity-oauth copied to clipboard

Published 20 hours ago verified publisher icon pwielgolaski

Access to teamcity outside the organization

Open sapielsam opened this issue 1 year ago • 1 comments

Based on the problem described in the article

Steps to reproduce the problem:

  1. Create a google account [email protected] (this account does not belong to the organization and is not managed by it in any way.)
  2. Try to log in to teamcity with this account.

The actual result: A new account with username: [email protected] is created and given default permissions.

Is it possible to add a check for jwt claim hd or via getHostedDomain to check if the user belongs to an organization?

sapielsam avatar Feb 08 '24 15:02 sapielsam

I think the problem here

sapielsam avatar Feb 08 '24 15:02 sapielsam