Artur
opened 8 months ago
-
You may disable the user in this case. Logout other users without disabling them does not make too much sense, as they can still login if remember option is ticked previously.
-
Previous Value Current Value Open
Closed
-
You misunderstood me.
We are disabling the account but in the external system used for user authorization. However, after disabling account in the external system, if the user is still logged in, he is not automatically logged out. So, he can still have access to the system.
I know we can manually disable the account in OneDev in additional to disabling account in the external system but this is extra manual step which someone has to remember.
It would be better to be able to build this into the external system, when account is disabled to log the user out.
-
Previous Value Current Value Closed
Open
-
You also need to disable the associated account at OneDev side. Next patch release will add the ability to enable/disable account via restful api (OD-2413). There is no way to automatically log user out when you disable the account from your external system.
-
Great, thank you, this is what I needed.
-
Previous Value Current Value Open
Closed
| Type |
New Feature
|
| Priority |
Normal
|
| Assignee | |
| Labels |
No labels
|
Hi,
We have our team/employees authenticated via external authentication system. When a member leaves our team we disable his account in our system and he can no longer login to the system. However, the problem is, if he is already logged into the OneDev, disabling his account in our system does nothing. He can still access all resources.
There seems to be no option to log him out.
Therefore, it would be very useful to have an option to log him out or invalidate his sessions. Ideally with an option to do it via REST API.