- π¦πΊAustralia realityloop
I'd like to describe a scenario where this requirement still stands.
We have a project where there are organisational users that should be able to log in immediately, but external users that have to submit an account request that needs to be approved by the organsation before they can log in.
To achieve this we have configured the Drupal Account settings to `Visitors, but administrator approval is required`, this allows the external users to use the account registration process and greatly reduces double handling of data.
In openid_connect setting I have set `Override registration settings`, but I think we also need an additional switch for `Override account approval settings`.
I'm about to start working on a patch for this.
- Merge request !90Issue #2974381: Allow to override the drupal user registration settings while logging in via openid (Extended) β (Open) created by realityloop
- last update
over 1 year ago 100 pass - Status changed to Needs review
over 1 year ago 11:26pm 5 October 2023 - last update
over 1 year ago 100 pass - π³πΏNew Zealand ericgsmith
I also have a use case for extending this functionality that is a little different to what is described above.
We have a client where the default registration setting is Visitors, but administrator approval is required but wish to override it so that we do not register accounts through open id connect.
This is because we have very specific registration process that involves collecting additional information specific to the site, the site admin team then settings up user roles and invites or provisions the user in AD prior to approving the Drupal account, and then we rely on the Automatically connect existing users to sync the accounts. This works fine, however there is a edge case we want to prevent by overriding the registration settings with more control.
Users may already by have an account within the organisations AD through access to other systems - if they try login prior to registering a account is created and set as blocked - and there is not enough information for the registration to be processed.
I wondered if there would be appetite to specify the exact behaviour you want to override as - I believe that would cover the edge case above.
E.g. - introduce a new field in the settings "Who can register accounts through OpenID connect?" that is visible only when "Override registration settings" is selected. Allow options of Nobody, Visitors and Visitors, but administrator approval is required.
Thoughts?
- π³πΏNew Zealand ericgsmith
I have pushed a new branch to show the alternative - not wanting to high-jack the issue or current MR but I do want to show this as a possible alternative.
Needs additional work for an update hook to set registration_setting to visitors for sites currently using override_registration_settings - but leaving as needs review as there hasn't been any feedback on @realityloop's approach and I don't want to put any additional effort before getting feedback from maintainer that there is interest in this approach.