Disable login with local account
This depends on #323.
When login with Azure or Google is configured then local logins can be completely disabled. Add a new property @Value("${allow.local.login:true}") boolean localLoginEnabled;
that controls if the Login form shows the username/password form. The same flag should modify the SecurityFilterChain
and disable local login processing altogether (if possible).
SOAP
Note that we still need local logins in the SoapAuthenticationInterceptor
.
The SOAP endpoints operate on the username and password. This means that GGCE should still have a local password that the user can configure, and this password will only be used in SoapAuthenticationInterceptor
.