Currently, authentication for all websites takes place without verification of google account status.
For authentication+authorization on vpn, ssh, any website, check with GATE.
Acceptance Criteria:
Once a user is logged into gate, there should be a sign-in timestamp somewhere.
While authenticating/authorizing a user, it should be unauthorized if the user is not logged in for past X hours.
Sidenote:
Our philosophy for gate is that no data should ever vanish. Should we keep a track of all sign-ins by any user? Currently, we only keep track of last sign-in.
Currently, authentication for all websites takes place without verification of google account status.
Acceptance Criteria:
Sidenote: