rhansen
commented
3 years ago Can you provide more details about your use case @clrh? Email addresses are ancillary data that may or may not be provided by the OIDC identity provider.
Are you thinking about doing something like this: Authenticate against Google, but only grant access if Google provides an email address claim in the account's userinfo, and that email address ends in @example.com.
Hi,
It would be so great to have a domain limit.
For example be able to prohibit "gmail.com" domain to login or just allow some domains. Ex: https://github.com/kanboard/plugin-google-auth
Do you have plans for this feature or is it already implemented ? (didn't see yet).
Regards, Claire.