Only allow ejabberd logins when XMPP service is enabled for user #550

Merged

raucao merged 1 commits from feature/xmpp_service_enabled into master 2024-03-27 16:17:04 +00:00

Conversation 0 Commits 1 Files Changed 2 +8 -2

raucao commented 2024-03-27 16:15:52 +00:00

Owner

Copy Link

We have manually recreated the ACI/permissions for the service account to read the necessary attributes, as well as a couple of other ones like e.g. displayName and jpegPhoto. This will eventually be a Rake task in akkounts for anyone to easily create read-only service accounts.

We then deployed the change to production and tested enabling and disabling the service from the akkounts console to allow/disallow ejabberd logins.

We have manually recreated the ACI/permissions for the service account to read the necessary attributes, as well as a couple of other ones like e.g. `displayName` and `jpegPhoto`. This will eventually be a Rake task in akkounts for anyone to easily create read-only service accounts. We then deployed the change to production and tested enabling and disabling the service from the akkounts console to allow/disallow ejabberd logins.

raucao added 1 commit 2024-03-27 16:15:52 +00:00

Only allow ejabberd logins when XMPP service is enabled 12b4fb37fa

greg was assigned by raucao 2024-03-27 16:16:08 +00:00

raucao self-assigned this 2024-03-27 16:16:09 +00:00

raucao added the

kredits-1

ops

labels 2024-03-27 16:16:19 +00:00

raucao changed title from Only allow ejabberd logins when XMPP service is enabled to Only allow ejabberd logins when XMPP service is enabled for user 2024-03-27 16:16:39 +00:00

raucao merged commit a8c4f0bd0e into master 2024-03-27 16:17:04 +00:00

raucao deleted branch feature/xmpp_service_enabled 2024-03-27 16:17:04 +00:00

raucao referenced this issue from a commit 2024-03-27 16:17:05 +00:00

Merge pull request 'Only allow ejabberd logins when XMPP service is enabled for user' (#550) from feature/xmpp_service_enabled into master

Sign in to join this conversation.

Reviewers

No Reviewers

Labels

Clear labels

service

accounts

Kosmos Accounts

service

discourse

Kosmos Community Forums

service

drone-ci

Kosmos Drone CI

service

email

mail.kosmos.org

service

garage

S3-compatible object storage

service

gitea

Kosmos Gitea

service

ipfs

Kosmos IPFS

service

mastodon

kosmos.social

service

postgres

Database cluster

service

remotestorage

Portable data storage for the Web

service

wiki

Kosmos Wiki

service

xmpp

Kosmos Chat

bug

Something is not working

design

Graphic/visual design

dev environment

Config, builds, CI, deployment, etc.

docs

Documentation

duplicate

This issue or pull request already exists

enhancement

Improving existing functionality

feature

New functionality

good first issue

Dive in, and start contributing

idea

Something to consider

invalid

Not a bug

kredits-1

Small contribution

kredits-2

Medium contribution

kredits-3

Large contribution

on hold

Currently not actionable

ops

Manual IT ops activities

question

Looking for an answer

release

major

release

minor

release

patch

security

All your base are belong to us

ui/ux

User interface, process design, etc.

wontfix

This won't be fixed

No Label

kredits-1

ops

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

bkero bumi fsmanuel galfert greg hueso raucao slvrbckt

No Assignees greg raucao

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: kosmos/chef#550

No description provided.