infra/docs/deletion-request.md

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

61 lines
2.1 KiB
Markdown
Raw Normal View History

2023-11-16 21:04:09 +00:00
# Process for handling a deletion request
### Keycloak
2024-05-08 20:57:07 +00:00
2023-11-16 21:04:09 +00:00
Required:
2024-05-08 20:57:07 +00:00
- auth.pub.solar `admin-cli` service user credentials
2024-06-10 18:26:20 +00:00
- [SSH access to host `nachtigall`](./administrative-access.md#ssh-access)
2024-05-08 20:57:07 +00:00
2024-06-10 18:26:20 +00:00
Run each of the following after SSH'ing to `nachtigall`:
2023-11-16 21:04:09 +00:00
2024-06-10 18:26:20 +00:00
```
sudo --user keycloak kcadm.sh config credentials --config /tmp/kcadm.config --server http://localhost:8080 --realm pub.solar --client admin-cli
2023-11-16 21:04:09 +00:00
# Take note of user id in response from following command
sudo --user keycloak kcadm.sh get --config /tmp/kcadm.config users --realm pub.solar --query email=<email-address>
# To avoid impersonification, we deactivate the account by resetting the password and email address
# Use user id from previous command, for example
sudo --user keycloak kcadm.sh update --config /tmp/kcadm.config users/2ec6f173-3c10-4b82-9808-e2f2d393ff11/reset-password --realm pub.solar --set type=password --set value=<random-password> --no-merge
sudo --user keycloak kcadm.sh update --config /tmp/kcadm.config users/2ec6f173-3c10-4b82-9808-e2f2d393ff11 --realm pub.solar --set email=<username>@deactivated.pub.solar
```
Docs: https://www.keycloak.org/docs/latest/server_admin/index.html#updating-a-user
### Nextcloud
2024-05-08 20:57:07 +00:00
2023-11-16 21:04:09 +00:00
```
nextcloud-occ user:delete <username>
```
Docs: https://docs.nextcloud.com/server/latest/admin_manual/configuration_server/occ_command.html#user-commands-label
### Mastodon
2024-05-08 20:57:07 +00:00
2023-11-16 21:04:09 +00:00
```
sudo -u mastodon mastodon-tootctl accounts delete --email <mail-address>
```
Docs: https://docs.joinmastodon.org/admin/tootctl/#accounts-delete
### Forgejo
2024-05-08 20:57:07 +00:00
2023-11-16 21:04:09 +00:00
```
sudo -u gitea gitea admin user delete --config /var/lib/forgejo/custom/conf/app.ini --purge --email <mail-address>
```
Docs: https://forgejo.org/docs/latest/admin/command-line/#delete
### Matrix
2024-05-08 20:57:07 +00:00
2023-11-16 21:04:09 +00:00
```
curl --header "Authorization: Bearer <admin-access-token>" --request POST http://172.18.0.3:8008/_synapse/admin/v1/deactivate/@<username>:pub.solar --data '{"erase": true}'
```
Docs: https://matrix-org.github.io/synapse/latest/admin_api/user_admin_api.html#deactivate-account
### OpenBikeSensor
2024-05-08 20:57:07 +00:00
2023-11-16 21:04:09 +00:00
Not implemented, see: https://github.com/openbikesensor/portal/issues/95