joshbwlng
commented
3 months ago @otaviojacobi Could you give some background on why we're adding auth.credentials_login, and also some tests should probably be added.
Closed otaviojacobi closed 3 months ago
joshbwlng
commented
3 months ago @otaviojacobi Could you give some background on why we're adding auth.credentials_login, and also some tests should probably be added.
We are moving towards more granular login permissions based on roles. The main advantage is that this allow for more control over different permissions, for example, users added by SAML won't be able to do
auth.credentials_login(andauth.social_service_account_loginstill to be done in balena-api). More over, this also allow for more control, for example, in the future I could see orgs configuring their users to only allow specific login methods (altough this is a stretch, the work here creates the foundation for it to be possible).