tranquil.farm / tranquil-pds
Our Personal Data Server from scratch! tranquil.farm
oauth atproto pds rust postgresql objectstorage fun
fork atom

Feature request: SSO integration and domain management options #34

open opened by zepman.tngl.sh

This is a feature request for new options that will allow Tranquil PDS to better integrate in an existing service environment.

  • Disable manual user registration and hide the button on the web interface's main page ("Join this server").
  • Only allow SSO login into the web interface.
  • Automatically attempt SSO authentication when visiting login page (oauth/login) so the user does not need to press a button.
  • Do not allow users to unlink from their SSO.
  • Disable passkey support.
  • Disable TOTP support.
  • Disable handle change by user.

When registering a user account through SSO:

  • Disable (do not require and do not support) account verification.
  • Do not allow the user to provide contact information. Get the user's email address through information provided by SSO.
  • Choose the default identity type.
  • Choose an identity type for the user. Do not allow the user to choose.
  • Upon logout, redirect the user's browser to an admin-configured URL.
sign up or login to add to the discussion
Labels

None yet.

assignee

None yet.

Participants 1
AT URI
at://did:plc:hmrmw6jp6zgrka3y46mt33u3/sh.tangled.repo.issue/3mghtsvom3b22