Uploaded image for project: 'Red Hat 3scale API Management'
  1. Red Hat 3scale API Management
  2. THREESCALE-127

Developer Portal : new user can bypass the account approval

    XMLWordPrintable

Details

    • Hide

      1) Enable account approval (Settings > General > Account Approval Required)
      2) Enable the Github SSO (Settings > Developer Portal > SSO Integration > Github > Published
      3) Visit the Developer Portal and login with a Github account
      4) At this point, the user is logged in on the Developer Portal whereas its account has not been approved
      5) Logout
      6) Login with Github again (with the same account)
      7) The user cannot login anymore (the error message is correct : "your account is not active")

      Show
      1) Enable account approval (Settings > General > Account Approval Required) 2) Enable the Github SSO (Settings > Developer Portal > SSO Integration > Github > Published 3) Visit the Developer Portal and login with a Github account 4) At this point, the user is logged in on the Developer Portal whereas its account has not been approved 5) Logout 6) Login with Github again (with the same account) 7) The user cannot login anymore (the error message is correct : "your account is not active")

    Description

      A customer found a bug on the developer portal. Namely, when account approval is required and SSO integration is enabled on the Developer Portal, a strange behavior happens when a developer signs in : he as access to his account immediately, temporarily bypassing the account approval. But as soon as he logs out and try to login again, he cannot since his account is not yet approved.

      Expected behavior : after the SSO login phase, the developer portals warns the users about his account being subject to approval. In the meantime, the user is logged out of the Developer Portal.

      Attachments

        Activity

          People

            Unassigned Unassigned
            rhn-support-nmasse Nicolas Masse (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: