OIDC group is always a "workgroup" - it cannot be changed and is not always desired

Question

OIDC group is always a "workgroup" - it cannot be changed and is not always desired

Closed this issue 3 months ago · 0 comments

Feature Category

Correctness
User Interface / User Experience
Performance
Other (please explain)

Describe the problem

OpenID Connect automatically creates a group for users that are bound to the specific provider. The problem is that group is created as "workgroup" so users see each other and by default share samples with each other (when Share with: All my groups) option is used.

We can't change that because group is "immutable" - its name and members are controlled by OIDC endpoints.

Describe the solution you'd like

Group should not be a workgroup by default
Group should be linked with OpenIDProvider by id (foreign key), not by name