Allow self-closing of account #120

New Issue

Open

opened 2023-04-11 09:49:48 +00:00 by raucao · 2 comments

raucao commented 2023-04-11 09:49:48 +00:00

Owner

Copy Link

Currently, we do not allow users to close accounts themselves, because we have not implemented deleting accounts automatically on the various connected services, and doing that in a manner appropriate to the respective use cases.

To do

• Identify/list which data can be deleted and which has to be preserved (e.g. public comments on Gitea issues and such)
• Identify where tombstones may be needed
• Decide if it's ever a good idea to free up a username again after account closing. Can be problematic for all of security, privacy, impersonation, etc.
• ...

Currently, we do not allow users to close accounts themselves, because we have not implemented deleting accounts automatically on the various connected services, and doing that in a manner appropriate to the respective use cases. ### To do * [ ] Identify/list which data can be deleted and which has to be preserved (e.g. public comments on Gitea issues and such) * [ ] Identify where tombstones may be needed * [ ] Decide if it's ever a good idea to free up a username again after account closing. Can be problematic for all of security, privacy, impersonation, etc. * [ ] ...

raucao added the

feature

security

ui/ux

labels 2023-04-11 09:50:08 +00:00

slvrbckt commented 2023-12-15 19:08:33 +00:00

Owner

Copy Link

To help out here I collected Info on deleting accounts for each of the services I knew we served (though I'm guessing about Prosody).

• Mastadon, there's a tootctl command: https://github.com/mastodon/mastodon/issues/1175
• Prosody (I wasn't sure which XMPP service we use) has the prosodyctl command which allows adding and deleting users (prosodyctl deluser JID): https://prosody.im/doc/prosodyctl
• Discourse, enter the launcher console and run some commands: https://meta.discourse.org/t/delete-my-account-with-the-console/82450
• MediaWiki, seems like just an SQL command and nothing else: https://www.inmotionhosting.com/support/edu/mediawiki/mediawiki-manage-user-accounts/
• Gitea, there's a gitea command which can manage users as well. e.g. gitea admin user delete --id 123. It's unclear whether this will remove posts as well, and I wasn't able to find any specific information on that. https://docs.gitea.com/next/administration/command-line
• Drone CI also has a command-line tool drone user rm [username]: https://docs.drone.io/cli/user/drone-user-rm/

This still leaves the Lightning node, and the Kosmos account itself. Not sure what else?

To help out here I collected Info on deleting accounts for each of the services I knew we served (though I'm guessing about Prosody). - Mastadon, there's a `tootctl` command: https://github.com/mastodon/mastodon/issues/1175 - Prosody (I wasn't sure which XMPP service we use) has the `prosodyctl` command which allows adding and deleting users (`prosodyctl deluser JID`): https://prosody.im/doc/prosodyctl - Discourse, enter the `launcher` console and run some commands: https://meta.discourse.org/t/delete-my-account-with-the-console/82450 - MediaWiki, seems like just an SQL command and nothing else: https://www.inmotionhosting.com/support/edu/mediawiki/mediawiki-manage-user-accounts/ - Gitea, there's a `gitea` command which can manage users as well. e.g. `gitea admin user delete --id 123`. It's unclear whether this will remove posts as well, and I wasn't able to find any specific information on that. https://docs.gitea.com/next/administration/command-line - Drone CI also has a command-line tool `drone user rm [username]`: https://docs.drone.io/cli/user/drone-user-rm/ This still leaves the Lightning node, and the Kosmos account itself. Not sure what else?

raucao commented 2023-12-15 19:29:36 +00:00

Author

Owner

Copy Link

I'm guessing about Prosody

We're using ejabberd. I looked up the API endpoint:

https://docs.ejabberd.im/developer/ejabberd-api/admin-api/#unregister

> I'm guessing about Prosody We're using ejabberd. I looked up the API endpoint: https://docs.ejabberd.im/developer/ejabberd-api/admin-api/#unregister

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

master

live

chore/btcpay_expired_paid-late

feature/nostr-onboarding-ruby

feature/nostr-onboarding

feature/import_deno_modules

docs/integrations

feature/ldap_aci

feature/contribution_nav

v0.10.0

v0.9.0

v0.8.1

v0.8.0

v0.7.0

v0.6.0

v0.5.0

v0.4.0

v0.3.0

v0.2.1

v0.2.0

v0.1.0

Labels

Clear labels

integration

btcpay

integration

discourse

integration

ejabberd

integration

email

integration

ldap

integration

lndhub

integration

mastodon

integration

nostr

integration

remotestorage

bug

Something is not working

design

Graphic/visual design

dev environment

Config, builds, CI, deployment, etc.

docs

Documentation

duplicate

This issue or pull request already exists

enhancement

Improving existing functionality

feature

New functionality

good first issue

Dive in, and start contributing

idea

Something to consider

invalid

Not a bug

kredits-1

Small contribution

kredits-2

Medium contribution

kredits-3

Large contribution

on hold

Currently not actionable

ops

Manual IT ops activities

question

Looking for an answer

release

major

release

minor

release

patch

security

All your base are belong to us

ui/ux

User interface, process design, etc.

wontfix

This won't be fixed

No Label

feature

security

ui/ux

Milestone

No items

No Milestone

Assignees

Clear assignees

bkero bumi fsmanuel galfert greg hueso raucao slvrbckt

No Assignees

2 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: kosmos/akkounts#120

No description provided.