This repository has been archived by the owner on Apr 26, 2024. It is now read-only.
Feature request: Allow accounts to be deactivated when the user is removed from an external auth provider #5285
Labels
A-Account-Deactivation
"Deleting"/"Removing" a user, GDPR erasure (erased)
O-Uncommon
Most users are unlikely to come across this or unexpected workflow
S-Minor
Blocks non-critical functionality, workarounds exist.
T-Enhancement
New features, changes in functionality, improvements in performance, or user-facing enhancements.
z-feature
(Deprecated Label)
z-p2
(Deprecated Label)
Comments
|
I think this is a duplicate of #4158? |
|
Hmm, I'd like the account completely disabled/deleted so it also doesn't show up in the directory anymore, but it's at very least similar, yes. |
|
Ah right, yes. There's more than one way to implement this, and I'm not sure a periodic callout to the identity server is the right one, since it would only work with mxisd setups. A more general solution is needed for external authentication providers in general. |
richvdh
changed the title
MadLittleMods
added
the
A-Account-Deactivation
squahtx
added
S-Minor
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Description:
Currently, I'm using Synapse together with mxisd as identity server (which uses LDAP as backend). It would be great if Synapse could occasionally check if the users still exist according to the identiy server, so that accounts can be automatically deactivated. A similar idea to https://docs.nextcloud.com/server/15/admin_manual/configuration_user/user_auth_ldap_cleanup.html, but then for identity servers in general instead of explicitly LDAP.
The text was updated successfully, but these errors were encountered: