Unable to restrict access to app without admin approving: all users can view all tasks without being verified

[giordifungula]

What Im currently trying to do.

## I am trying to allow users to be able to view and have access to the app only on approval of the admin verifying the users, because now as long as you have access to the app, you can signup and view each and every detail and information
@ozen @nmanovic

I am using this link to try and fix the issue of disabling self sign up on the login page.

What steps I have done

• cd into cvat/settings
• cp base.py base.py.backup
• open base.py
• added ACCOUNT_AUTHENTICATION_METHOD = 'username' inside base.py
• added ACCOUNT_CONFIRM_EMAIL_ON_GET = True inside base.py
• added ACCOUNT_EMAIL_REQUIRED = True inside base.py
• added ACCOUNT_EMAIL_VERIFICATION = 'mandatory' inside base.py
• ran docker-compose -f docker-compose.yml -f docker-compose.dev.yml -f build
• ran docker-compose -f docker-compose.yml -f docker-compose.dev.yml -f up -d

How am I running CVAT:

• I have an ec2 instance running version cvat:master branch changes on top of a version that I had running that had the proxy with the nginx server configured in the docker file.
• When I run commands sudo docker-compose -f docker-compose.yml -f docker-compose.dev.yml build and sudo docker-compose -f docker-compose.yml -f docker-compose.dev.yml up -d to build the docker images
• I'm unable to login as any users after these configs were applied to the base.py file and I build the docker images too.
• I, however, noticed that there is now a toast saying "You are not verified", if you try and log in as a user that is not verified, but no one is able to login.
• See screenshots below on what the output is
  

Note:

• It looks like when I reset the default base.py settings and add back the old configs it works fine, however, the problem still persists about users being able to automatically login without being verified by the admin.
• However, I would like those configs
  added ACCOUNT_AUTHENTICATION_METHOD = 'username' inside base.py
• added ACCOUNT_CONFIRM_EMAIL_ON_GET = True inside base.py
• added ACCOUNT_EMAIL_REQUIRED = True inside base.py
• added ACCOUNT_EMAIL_VERIFICATION = 'mandatory' inside base.py
  to be added to my base.py file but I would like to be able to login as any user and also only be able to login after admin verifies the user.
• Please let me know if you can replicate this issue or if you can advise on how to get this working whilst still being able to login as any user and keep the latest configs

[giordifungula]

@nmanovic This thread helped me solve the problem:
Essentially, I needed to create the super admin user again and I was able to login now without any issues.
One thing im not sure about that Im considering is probably to just create the super admin user right after I have build the application and made changes, instead of running it twice. Let me know what your thoughts are.
### When exactly am I running the create super user

• 1st time I am running it is when I am following the documentation on installing cvat
• now secondly after I hit this error after I made the changes to the base.py file and ran build on the docker images.
  Thank you, please advise, if I can close this or we maybe need to better document when or where you need to create the super admin user especially if you want to restrict access.

[nmanovic]

Let's close it. You don't need to create superuser twice. DB is preserved if you don't run docker-compose down -v ... command