Rethink User management #111

krishnagopinath · 2017-08-04T23:52:39Z

At the moment the app has some problems with its user management.

There is no way for the user to reset the password if they forgot the password.
Admins make passwords for the user.
There seems to be only ONE admin. This could cause account lockdown and stuff, which is unnecessary.

krishnagopinath · 2017-11-13T03:30:45Z

I've got some ideas as to how we could do this:

Option 1

This could look confusing, but the way this is done is pretty standard for user management..

When matterwiki is setup, we could setup an install script that
- asks for default DB information (hostname, uname, password)
- creates the first admin user for the system in the CLI.. the user who sets it up will be prompted for email, password and a login will be created for that user.
- the user could then login and invite more folks! (lets call this admin1 for now)
When the admin logs in,
- they could invite more users (they could choose roles)
- invited users could get a link that will take them to a setup screen where they can type a password and all that

Option 2

Use github, slack or some OAuth setup that would already have a team (slack group or github organisation) and all folks in the team would get access to stuff
This workflow does look simpler but we'd lose some control over the user maagement.. like role based permissions could get wonky

thoughts, @nshntarora ?

nshntarora · 2017-11-13T07:11:29Z

I'd vote for option 2.

Other than the workflow being simpler, my reason is:
We're not trying to build Matterwiki as a platform in itself, it works great and satisfies its existence by integrating into another platform like Slack or GitHub or your company Google Apps account. Plus, we will have to integrate with Slack at some point if we want to become a vital part of our users' workflow.

Having said that, I'm not sure how it will mess up the permissions. Can you please elaborate some scenarios we might face issues in?

krishnagopinath · 2017-11-13T13:23:20Z

Alrighty that makes sense! We could start working on sign ins with Slack, GitHub and GApps for now.

My problems with this is that we might not be able to have granular control on roles, but now that I think about it, I might be totally wrong 😀

rja907 · 2017-12-31T16:40:17Z

I have experience with Google OAuth. Should I get started with that?

krishnagopinath · 2017-12-31T17:21:19Z

Of course! We could then deal with Slack, GitHub, Atlassian etc.

nshntarora · 2018-01-02T12:11:33Z

@rja907 Thanks a lot of showing interest. Would be great if you could pick this up.

Just start working on it, and create a PR, link it to this issue so that everyone else could keep track and maybe help you out along the way.

If you need any kind of help in understanding the codebase, or anything else, just send me an email on na[dot]nishantarora[at]gmail.com or contact me on Twitter (I'm nshntarora)

mlgarchery · 2018-09-05T12:31:54Z

+1 for option 2. A lot of wiki have also a LDAP support, I personally use this method for managing users

krishnagopinath added design/ux discussion labels Aug 4, 2017

krishnagopinath added this to the 0.3.0 milestone Aug 4, 2017

nshntarora self-assigned this Jan 21, 2018

nshntarora mentioned this issue Jan 27, 2018

OAuth - Login via Slack #130

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Rethink User management #111

Rethink User management #111

Rethink User management #111

Rethink User management #111

Comments

Option 1

Option 2