Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Question] Recently setup server in Production but can't limit Organizational Registrations #7821

Open
d4amenace opened this issue May 23, 2024 · 8 comments
Open

[Question] Recently setup server in Production but can't limit Organizational Registrations #7821

d4amenace opened this issue May 23, 2024 · 8 comments
Assignees
@evereq @rahul-rocket
Labels
type: question ❓ Further information is requested
Milestone
v0.1

Comments

@d4amenace
Copy link

After setting up gauzy and creating an organization through the registration link, this org does not have superadmin capabilities to see/limit other org registrations.

How does one go about creating a server superuser admin that has view of all registered org's on the server?
@evereq evereq self-assigned this May 23, 2024
@evereq evereq added the type: question ❓ Further information is requested label May 23, 2024
@evereq evereq added this to the v0.1 milestone May 23, 2024
@evereq evereq changed the title Recently setup server in Production but can't limit Organizational Registrations [Question] Recently setup server in Production but can't limit Organizational Registrations Jun 2, 2024
@evereq
Copy link
Member

evereq commented Jun 2, 2024

@d4amenace not sure I understand the requirements:

  1. do you want to have one user who sees ALL organizations on the server, from ALL Tenants?
    OR
  2. do you want to make sure no other users can register into the same tenant / org you already have registered users? But how they can register, unless invited? Essentially registration feature will make for them new tenant with new org, you want to limit such registrations so only your company / tenant can use the server, not others?

@d4amenace
Copy link
Author

@evereq
Copy link
Member

evereq commented Jun 11, 2024

@rahul-rocket do you recall how to limit registrations of new tenants? I remember we added that env var...

@rahul-rocket
Copy link
Collaborator

@evereq #5784

We did not implemented this feature yet.

@evereq
Copy link
Member

evereq commented Jun 11, 2024

OK @rahul-rocket , can we create an env var called ALLOW_TENANTS_REGISTRATION that should be true by default and that possible to set to false to completely disable new tenants registration?
(the same idea of naming as we have already ALLOW_SUPER_ADMIN_ROLE env var)

So essentially it will provide ability to disable new tenants' registrations if someone self-host Gauzy for their own tenant(s).

Let's also add another env var called ADMIN_PASSWORD_RESET (again true by default) that will disable the reset password feature for Admins / SuperAdmins for all tenants when set to false. (we have same one in Ever Demand https://github.com/ever-co/ever-demand/blob/develop/packages/core/.env.template#L48C1-L49C26, not sure if we have it in Gauzy already, please double check)

@d4amenace
Copy link
Author

OK @rahul-rocket , can we create an env var called ALLOW_TENANTS_REGISTRATION that should be true by default and that possible to set to false to completely disable new tenants registration? (the same idea of naming as we have already ALLOW_SUPER_ADMIN_ROLE env var)

So essentially it will provide ability to disable new tenants' registrations if someone self-host Gauzy for their own tenant(s).

Let's also add another env var called ADMIN_PASSWORD_RESET (again true by default) that will disable the reset password feature for Admins / SuperAdmins for all tenants when set to false. (we have same one in Ever Demand https://github.com/ever-co/ever-demand/blob/develop/packages/core/.env.template#L48C1-L49C26, not sure if we have it in Gauzy already, please double check)

Just curious, will this only limit new user registrations to my org: (a greatly needed feature) or will it also allow the server owner to prevent the registration of new orgs as well? (which is desperately needed)

@evereq
Copy link
Member

evereq commented Jun 11, 2024

@d4amenace it will "allow the server owner to prevent the registration of new" TENANTS.
We have concept of Tenants AND concept of Organizations, they are not same (one Tenant can have few Orgs).
We will allow to keep only those Tenants that you already have and restrict anyone to create new Tenants.
So essentially INVITEs will keep working (because you invite people to your existed Orgs / Tenants), but NEW people can't make own tenants (and so can't make own Orgs).

Hope makes sense :)

@rahul-rocket
Copy link
Collaborator

OK @rahul-rocket , can we create an env var called ALLOW_TENANTS_REGISTRATION that should be true by default and that possible to set to false to completely disable new tenants registration? (the same idea of naming as we have already ALLOW_SUPER_ADMIN_ROLE env var)

So essentially it will provide ability to disable new tenants' registrations if someone self-host Gauzy for their own tenant(s).

Let's also add another env var called ADMIN_PASSWORD_RESET (again true by default) that will disable the reset password feature for Admins / SuperAdmins for all tenants when set to false. (we have same one in Ever Demand https://github.com/ever-co/ever-demand/blob/develop/packages/core/.env.template#L48C1-L49C26, not sure if we have it in Gauzy already, please double check)

@evereq Sure. I will work on it soon.
CC: @d4amenace

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@evereq evereq

@rahul-rocket rahul-rocket

Labels
type: question ❓ Further information is requested
Projects
None yet
Milestone
v0.1
Development

No branches or pull requests
4 participants
@evereq @d4amenace @rahul-rocket @sarju-ackplus