Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement E-Mail Domain Whitelist for Registration #1151

Open
AliceWi opened this issue Sep 18, 2024 · 3 comments
Open

Implement E-Mail Domain Whitelist for Registration #1151

AliceWi opened this issue Sep 18, 2024 · 3 comments
Labels
effort:minor type:feature-request
Milestone
RDMO 2.3.0

Comments

@AliceWi
Copy link

AliceWi commented Sep 18, 2024

Rationale / Begründung

User registrations can come from any email domain, which may lead to spam accounts, security risks, or unwanted users in the system. Implementing an email domain whitelist restricts user registrations to approved domains only, for example university or institute domains.

Affected

Users, Admins

Minimal functionality

  • Allow the specification of a list of allowed email domains in the settings.
  • The feature should be optional; if no domains are provided, RDMO should accept registrations from any domain.

Nice-to-have functionality

References / Verweise
@jochenklar
Copy link
Member

Hi @AliceWi , thanks for the idea. This should not be to hard to implement.

@jochenklar jochenklar added this to the RDMO 2.3.0 milestone Sep 18, 2024
@afuetterer
Copy link
Member

A custom EmailValidator with an allowlist?

Ref: https://docs.djangoproject.com/en/4.2/ref/validators/#django.core.validators.EmailValidator.allowlist

@jochenklar
Copy link
Member

I think it needs to be implemented here: https://github.com/rdmorganiser/rdmo/blob/main/rdmo/accounts/adapter.py#L14. The adapter hooks into allauth signup process. I think we just need to implement clean_email https://github.com/pennersr/django-allauth/blob/main/allauth/account/adapter.py#L346.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
effort:minor type:feature-request
Projects
None yet
Milestone
RDMO 2.3.0
Development

No branches or pull requests
3 participants
@jochenklar @AliceWi @afuetterer