Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Search
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Collapse
Brand Logo

Cloudron Forum

Apps | Demo | Docs | Install
  1. Cloudron Forum
  2. Penpot
  3. New invited user from Penpot UI doesn't have correct "editor" rights

New invited user from Penpot UI doesn't have correct "editor" rights

Scheduled Pinned Locked Moved Solved Penpot
4 Posts 2 Posters 752 Views 2 Watching
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • D Offline
    D Offline
    david.rideau
    wrote on last edited by
    #1

    Hi,

    New to this forum, I'm french, sorry for english errors 😉

    I'm trying to configure Penpot's access rights.

    When I invite a new user with email address from Penpot, it does correctly send an invite email, and the new user can connect with the registration link included in the mail.

    But there are two problems (in my configuration):

    First, the user doesn't have the correct "editor" role that I assigned to him.
    He has all privileges, he can create new teams and projects, etc.
    That's not what I want, because I can't correctly administer my Penpot platform.

    Second, after first login, he can't reconnect through OpenID's Cloudron interface, because I haven't created a user with this email on Cloudron.
    If I create the user on Cloudron, he can connect well, but I can't restrict access to Penpot correctly based on Penpot's roles.

    Is there anybody here that have faced this problem ?

    Is there some docker-compose configuration on Cloudron's Penpot app that I missed in the documentation ?

    Could Penpot app be configured to "leave the app manage users" ?

    Thanks in advance for any feedbacks.

    David

    1 Reply Last reply
    1
    • nebulonN Offline
      nebulonN Offline
      nebulon
      Staff
      wrote on last edited by nebulon
      #2

      Hi and welcome here.

      Currently Penpot can only be installed with Cloudron usermanagement enabled. And that also means that only OpenID login is possible. Following your description though I was also able to invite users, which then can create an account using the invite link. Those can be assigned for example the editor role and that works, however after logging out, those user can never login it seems as they are not Cloudron users, so no OpenID will work.

      I guess Penpot does not cover all use-cases with only OpenID enabled for login. I have to analyze that a bit more to understand which config is required to support both external users and Cloudron users.

      1 Reply Last reply
      1
      • nebulonN nebulon marked this topic as a question on
      • nebulonN Offline
        nebulonN Offline
        nebulon
        Staff
        wrote on last edited by
        #3

        The latest package was reworked a bit and enables the password login but not the registration. This allows invited users to login.

        I was not able to reproduce the issue with the editor role, this seems to work as expected for me.

        1 Reply Last reply
        2
        • D Offline
          D Offline
          david.rideau
          wrote on last edited by
          #4

          Hi @nebulon,

          I've tested the new package.

          Login is now possible for invited users, it's perfect.

          And editor role is now correctly applied, I don't know if it was a mistake from me at first, but it's now solved.

          Thanks a lot for assistance !

          1 Reply Last reply
          1
          • nebulonN nebulon has marked this topic as solved on
          Reply
          • Reply as topic
          Log in to reply
          • Oldest to Newest
          • Newest to Oldest
          • Most Votes


          • Login

          • Don't have an account? Register

          • Login or register to search.
          • First post
            Last post
          0
          • Categories
          • Recent
          • Tags
          • Popular
          • Bookmarks
          • Search