Block user through HTTP API (#846)

The new functionality allows blocking a user in the Management service. Blocked users lose access to the Dashboard, aren't able to modify the network map, and all of their connected devices disconnect and are set to the "login expired" state. Technically all above was achieved with the updated PUT /api/users endpoint, that was extended with the is_blocked field.
2026-04-18 08:16:39 +00:00 · 2023-05-11 18:09:36 +02:00
parent 9f758b2015
commit e3d2b6a408
13 changed files with 505 additions and 155 deletions
--- a/management/server/http/api/openapi.yml
+++ b/management/server/http/api/openapi.yml
@@ -65,7 +65,7 @@ components:
        status:
          description: User's status
          type: string
-          enum: [ "active","invited","disabled" ]
+          enum: [ "active","invited","blocked" ]
        auto_groups:
          description: Groups to auto-assign to peers registered by this user
          type: array
@@ -79,6 +79,9 @@ components:
          description: Is true if this user is a service user
          type: boolean
          readOnly: true
+        is_blocked:
+          description: Is true if this user is blocked. Blocked users can't use the system
+          type: boolean
      required:
        - id
        - email
@@ -86,6 +89,7 @@ components:
        - role
        - auto_groups
        - status
+        - is_blocked
    UserRequest:
      type: object
      properties:
@@ -97,9 +101,13 @@ components:
          type: array
          items:
            type: string
+        is_blocked:
+          description: If set to true then user is blocked and can't use the system
+          type: boolean
      required:
        - role
        - auto_groups
+        - is_blocked
    UserCreateRequest:
      type: object
      properties:
@@ -645,7 +653,7 @@ components:
          description: The string code of the activity that occurred during the event
          type: string
          enum: [ "user.peer.delete", "user.join", "user.invite", "user.peer.add", "user.group.add", "user.group.delete",
-                  "user.role.update",
+                  "user.role.update", "user.block", "user.unblock",
                  "setupkey.peer.add", "setupkey.add", "setupkey.update", "setupkey.revoke", "setupkey.overuse",
                  "setupkey.group.delete", "setupkey.group.add",
                  "rule.add", "rule.delete", "rule.update",