Merging accounts
We originally deployed Coder on K8s using Keycloak as our OIDC. We have been tasked to migrate to using Entra ID as our OIDC. However, we've had users using Coder for over a year and our email domain is going to be different now that we migrate to Entra ID. Is there a feature or script that we can use to merge user accounts with the old and new email domain?
3 Replies
What are you creating this issue for?
hey, apologies for the delay, it seems this message went under our radar
i'll ask around internally and follow-up as i'm not sure how we handle this
emails serve as our user ID so it'll definitely cause some issues
@Bianca just keeping you updated, i have asked internally, but it's a complicated question
I'm going to be pretty busy this week, so expect some delay :)
hey, updating you on this, the last weeks have been very busy for me, and this week will be too so there is a lot of backlog that has built up so I apologize for the delay!
If no one else from the team has had the time to figure this out I should be able to catch up
with all open issues by next week EOW, I will try to leave an answer, even if it is an "i don't know" just so you know we're looking at this!
thanks for your understanding :-)
hey!
apologies for the delay! here's what our engineering team answered:
1. update every email for every user in keycloak to the expected new email 2. tell everyone to sign out and sign back into coder, maybe also wait a few weeks for anyone on PTO to also get the memo and do it a. bonus points if you delete everyone's refresh tokens from keycloak 3. all (or most) profiles should now have the correct email, ask everyone to check first 4. switch OIDC provider and ask everyone to sign out then back in