Inviting individual users from another org when "Check for Project on Authentication" is enabled?
Let's say I have two organizations,
A with and B and they both have their own project (projectA, projectB) and an application (appA, appB) . In projectB I useCheck for Project on Authentication setting. Now only users of org B can access project B (as intended).
How can I then allow some select individuals of organization A to log in to appB? I've tried creating a role in projectB and then authorizing users of A, but I keep getting Login not possible. The organization of the user must be granted to the project message.7 Replies
Try adding a project grant to org a
I did that, but would that not grant access to all users of A?
yes that would.
the thing with that setting is that we check for if the owner organization of the user does have access to the project or not
an other possiblity would be to have the other setting where we check for authorization, in that case it is not enough to give only the project, but rather to give a specific authrotization to the user excplicitly
would that solve your problem?
another possiblity is, that you don't enable the setting at all and you just check for the permission in the project itself
Do you mean that I would check both options?
Check for Project on Authentication and Check authorization on Authentication? In that case users of org A still wouldn't be able to join according to my tests, even if they were given an authorization for the projectB
Or do you enabling only the Check authorization on Authentication option? I think that would that mean that the users of org B would not be accepted by default, but that I would have to give them some role.
If I wanted to add that role automatically for new users of org B, where would be the easiest / best way to do that?yes i mean to only use check authorization on authentication. and this would mean you have to add it for all users in org b
you could do that with a zitadel action
ZITADEL Docs
This page describes the options you have when writing ZITADEL actions scripts.
ZITADEL Docs
Actions are a powerful tool to extend ZITADEL and you might wonder what use cases actions can be used for.