Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Automatically Disable Inactive OPS Accounts #2104

Open
8 of 16 tasks
Tracked by #2100
tdonaworth opened this issue Mar 21, 2024 · 1 comment
Open
8 of 16 tasks
Tracked by #2100

Automatically Disable Inactive OPS Accounts #2104

tdonaworth opened this issue Mar 21, 2024 · 1 comment
Assignees
@rajohnson90 @maiyerlee
Labels
security-privacy-compliance Work needed around Security, Privacy, or Compliance story A defined user story adhering to expected norms including a narrative

Comments

@tdonaworth
Copy link
Contributor

tdonaworth commented Mar 21, 2024
edited by maiyerlee
Loading

User Story

As an OPS System Admin, I want any existing active OPS user who hasn't successfully used OPS within the last 60 days to automatically be locked out in order to help meet mandatory compliance obligations.

Acceptance Criteria

  • Without any human intervention, an automated and scheduled process should execute to discern any currently ACTIVE users who most recently logged on or started a session 60 or more days ago to have their status set to INACTIVE
  • Any such change in status executed by this process should be recorded and logged in the same manner as if a System Admin manually disabled the user
  • The schedule for this process's execution should be hourly until otherwise directed by OPRE.
  • If this scheduled process is not able to execute as expected, the necessary individuals should be notified.
  • FakeAuth users should be excluded from this process

Tasks

UX

Dev

  • Azure Function with a timer trigger ? backed endpoints to do the checking and locking?

Definition of Done Checklist

- [ ] UI works as designed (UX team)

  • PR(s) have been merged to main
  • Design/tech debt eliminated
  • New design/tech debt documented (if applicable)
  • Build process updated
  • Documentation updated or added
  • Feature flags/toggles created

Additional Context & Resources
@tdonaworth tdonaworth mentioned this issue Mar 21, 2024
Open
26 tasks
@tdonaworth tdonaworth added the task task for an associated story or backlog item label Mar 21, 2024
@jonnalley jonnalley added story A defined user story adhering to expected norms including a narrative security-privacy-compliance Work needed around Security, Privacy, or Compliance and removed task task for an associated story or backlog item labels Jul 19, 2024
@jonnalley jonnalley changed the title ac-02-03 - Disable Accounts Automatically Disable Inactive OPS Accounts Jul 19, 2024
@jonnalley jonnalley mentioned this issue Jul 19, 2024
Closed
15 tasks
@maiyerlee
Copy link
Contributor

From team discussion at ENG Collab Block today (8/26): consider creating a new user specifically for automatic updates triggered by running scripts.

@jonnalley jonnalley mentioned this issue Oct 15, 2024
Open
9 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@rajohnson90 rajohnson90

@maiyerlee maiyerlee

Labels
security-privacy-compliance Work needed around Security, Privacy, or Compliance story A defined user story adhering to expected norms including a narrative
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@jonnalley @rajohnson90 @maiyerlee @tdonaworth