Limits number of SSO / Login ID a user account could have

authgear / authgear-server

Open source alternative to Auth0 / Firebase Auth

https://www.authgear.com

Apache License 2.0

73 stars 30 forks source link

Limits number of SSO / Login ID a user account could have #978

Open chpapa opened 3 years ago

chpapa commented 3 years ago

Currently, say if Email Login ID is enabled, in Portal, admin seems can add unlimited number of email address; While in Setting, users can only have 1 email address (and display latest one only seems)

We should:

Make it a configuration, default 1 only
Sync Portal and Setting behaviour under different settings.

louischan-oursky commented 3 years ago

The original issue is here https://github.com/authgear/authgear-server/issues/338 The reason why such limit was removed https://github.com/authgear/authgear-server/issues/261#issuecomment-694730700 The current behavior is we have settled. In the settings page, the user can only see one login ID because it is the most common use case. I think we can just disallow adding more than 1 login ID in portal, until we meet a developer who really wants this?

chpapa commented 3 years ago

Maybe this issue priority could be lower first, seems quite complicated lol.