Open Swennet opened 1 year ago
It's quite strange that - when having OAuth enabled - any third party can create a User by attempting to log in.
I suggest a configuration setting that, when enabled, only allows OAuth to "match" with existing users, rather than creating new users on login.
It's quite strange that - when having OAuth enabled - any third party can create a User by attempting to log in.
I suggest a configuration setting that, when enabled, only allows OAuth to "match" with existing users, rather than creating new users on login.