feat: add login type 'none' to prevent password login (#8009)

* feat: add login type 'none' to prevent login Users with this login type must use tokens to authenticate. Tokens must come from some other source, not a /login with password authentication
2025-07-03 16:13:58 +00:00 · 2023-06-14 12:48:43 -05:00
parent cbd49abfcd
commit 6c4c3d6ce5
18 changed files with 160 additions and 41 deletions
--- a/coderd/apidoc/docs.go
+++ b/coderd/apidoc/docs.go
@ -6859,10 +6859,13 @@ const docTemplate = `{
            "type": "object",
            "required": [
                "email",
-                "password",
                "username"
            ],
            "properties": {
+                "disable_login": {
+                    "description": "DisableLogin sets the user's login type to 'none'. This prevents the user\nfrom being able to use a password or any other authentication method to login.",
+                    "type": "boolean"
+                },
                "email": {
                    "type": "string",
                    "format": "email"
@ -7621,13 +7624,15 @@ const docTemplate = `{
                "password",
                "github",
                "oidc",
-                "token"
+                "token",
+                "none"
            ],
            "x-enum-varnames": [
                "LoginTypePassword",
                "LoginTypeGithub",
                "LoginTypeOIDC",
-                "LoginTypeToken"
+                "LoginTypeToken",
+                "LoginTypeNone"
            ]
        },
        "codersdk.LoginWithPasswordRequest": {