Restrict users from google groups to login if google oauth is enabled

[bhchew]

Is your feature request related to a problem? Please describe.
Currently if google oauth is enabled, any google user (external audience) or domain users (internal audience) are able to login to create orgs/repos etc

Describe the solution you'd like
Allow login from selective google groups only. Eg oauth2-proxy restrict logins to members of group/s
https://oauth2-proxy.github.io/oauth2-proxy/configuration/providers/google

Describe alternatives you've considered
Role based access sitewide but that will be a huge overhaul

Additional context
None

[tegioz]

Hi @bhchew 👋

One of the Artifact Hub's goals is to foster collaboration and sharing, by providing a place where anyone can publish and discover all kinds of Cloud Native artifacts. Providing a mechanism to restrict what users can log in doesn't align well with this goal. I understand this can be useful in private deployments, but any form of restricting login options isn't in our roadmap at the moment. We are mostly interested in features that would benefit most users of the https://artifacthub.io/ deployment.

Artifact Hub supports OIDC authentication. You could setup up your own authentication provider the way that works best for you and use it as the authentication mechanism for AH.