Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Navigation

    Cloudron Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular

    SOLVED Deactivate user

    Support
    5
    10
    173
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • yusf
      yusf last edited by

      How do I deactivate a Cloudron user? I don't want to delete it.

      1 Reply Last reply Reply Quote 1
      • nebulon
        nebulon Staff last edited by

        There is no such feature. What is your use-case for this?

        yusf M 2 Replies Last reply Reply Quote 0
        • subven
          subven last edited by subven

          You could just lock him out of the account by changing the recovery mail to his own mailbox and than change his password by setup link. To regain access just give him another setup link. Thats how I do it. It's not very "professional" but the best way so far.

          @nebulon I work for a club and we have a lot of active members. Some of them are not as active as we wish for and from time to time (after half a year) I'm not quiet sure if they still can be counted as "active". I would very wish to have to option to just deactivate them. So it does not feel like being thrown out and there is an easy way to get back (apart from the technical steps that have to be done for every service the user has access to).

          PS: I would really love to use cloudron LDAP groups for stuff like nextcloud but this was already discussed somewhere else.

          1 Reply Last reply Reply Quote 0
          • yusf
            yusf @nebulon last edited by

            @nebulon My use-case is quite similar to that of @subven’s.

            1 Reply Last reply Reply Quote 0
            • M
              murgero App Dev @nebulon last edited by

              @nebulon One use case, at least in the united states is some companies need to be compliant with FOIA requests (RE: cities, charities, schools, etc) which requires the account and all data to remain unmodified for certain requests. This can allow for a disabled account (to prevent unauthorized deletion of emails as an example.)

              1 Reply Last reply Reply Quote 1
              • nebulon
                nebulon Staff last edited by

                Interesting use-cases indeed. How could disabling users look like? Is this only about not being able to login to apps and the Cloudron dashboard anymore for a start?

                yusf 1 Reply Last reply Reply Quote 2
                • subven
                  subven last edited by subven

                  Apps / Dashboard / Mail(!). For apps, this can be complicated because some just sync the directory and search for users, not looking for things like pwdAccountLockedTime (used in OpenLDAP to lock accounts). If I remember correctly, e.g. gitlab tokens are also not affected if the user is disabled in LDAP.

                  Some notes:

                  • deactivating users should always be quite
                  • messing with user passwords is never a good solution
                  • disabling an account means that no other person may have access (in case of legal investigations, this is very handy)
                  1 Reply Last reply Reply Quote 2
                  • yusf
                    yusf @nebulon last edited by

                    @nebulon said in Deactivate user:

                    How could disabling users look like?

                    I imagine another button or a toggle element in the Actions columns of the user list.

                    1 Reply Last reply Reply Quote 0
                    • girish
                      girish Staff last edited by

                      We have added a user active flag for the next release. When you de-activate a user, it simply won't let them login to the dashboard or any of the apps. No notification is sent to the user that he/she was disabled. In the admin view, you will see a grayed out user (which you can re-activate).

                      yusf 1 Reply Last reply Reply Quote 5
                      • yusf
                        yusf @girish last edited by

                        @girish Many thanks!

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post