Open aashutoshrathi opened 6 years ago
Not sure, motive behind this btw?
The portal should remain accessible only to the students of that institutes
I think it's easy to get the details of the email the user enrolls with, if it matches what we want then we allow auth else reject it.
Exactly that's what the issue demands @anshumanv but the thing here is that we don't know if we have access to the email in between of the OAuth or we can only have it after the registration
Okay fuck, I thought this issue is in cerebro webapp.
We can create the authentication API in google cloud from an email having iiitvadodara.ac.in and set the User type to internal. If anyone outside of that domain tries to login, google will reject the request.
Is there any such thing to restrict the domains?