Open Mark24Slides opened 7 months ago
Hi, I have the same issue on self-hosted instance.
INVITE_ONLY_SIGNUP=true
is set but random users can still create new accounts with new organizations via signup link on login page.
In admin panel Enable signup or invite
is enabled.
If I disable it then got Signup are disabled
in the response with 400 http code on POST /singupinvite route, but also link for signup disappears on login page - which is fine but invitations stop work then.
I'm using image: infisical/infisical:v0.43.16
(see docker-compose.yml).
App: http://localhost
SMTP dashboard: http://localhost:8025
Expected behavior: I would like to allow only invited users to create accounts/login into via email flow. Other sing-ups for non invited users should be rejected.
===
@Mark24Slides "in admin dashboard" do you have enabled or disabled Enable signup or invite
?
You probably have disabled Enable signup or invite
in admin dashboard. If you enable it, invitations will work, but also random users can create accounts and organizations then.
@mtracz Thanks a lot, for a solution, had it disabled.
But, as you already mentioned, now anybody can create own account and auth infisical portal. Would be cool to have INVITE_ONLY_SIGNUP working again.
@Mark24Slides we'll look into INVITE_ONLY_SIGNUP
issue
Can confirm the issue on v0.45.4
.
Describe the bug
Signup via invite does not work. Using latest self-hosted infisical/backend and infisical/frontend: v0.43.16
Sent invite to the user via Organization Access Control. College opened the link, entered credentials and got: "Signup are disabled" respond.
INVITE_ONLY_SIGNUP env variable is setup with "true" (tried "false", with redeployment, same error).
To Reproduce
Steps to reproduce the behavior:
Platform you are having the issue on:
Kubernetes cluster, v.1.26
Docker images: infisical/backend:v0.43.16 infisical/frontend:v0.43.16 infisical/kubernetes-operator:v0.3.3 gcr.io/kubebuilder/kube-rbac-proxy:v0.15.0 docker.io/bitnami/redis:7.2.3-debian-11-r1
P.S. Checked https://infisical.com/docs/self-hosting/configuration/envars, all should be ok (infisical works correctly, except signup).