You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/user/guides/setup-single-sign-on-google-email.rst
+27-2Lines changed: 27 additions & 2 deletions
Original file line number
Diff line number
Diff line change
@@ -24,7 +24,8 @@ User setup
24
24
~~~~~~~~~~
25
25
26
26
Using this setup,
27
-
all users who have access to the configured Google Workspace will be granted a subset of permissions on your organization automatically on account creation.
27
+
all users who have access to the configured Google Workspace will automatically join to your organization when they sign up with their Google account.
28
+
Existing users will not be automatically joined to the organization.
28
29
29
30
You can still add outside collaborators and manage their access.
30
31
There are two ways to manage this access:
@@ -42,6 +43,14 @@ However, you can define which teams users matching your company's domain email a
42
43
2. Select **Google** in the :guilabel:`Provider` drop-down.
43
44
3. Press :guilabel:`Save`.
44
45
46
+
After enabling SSO with Google Workspace,
47
+
all users with email addresses from your configured Google Workspace domain will be required to signup using their Google account.
48
+
49
+
.. warning::
50
+
51
+
Existing users with email addresses from your configured Google Workspace domain will not be required to link their Google account,
52
+
but they won't be automatically joined to your organization.
53
+
45
54
Configure team for all users to join
46
55
------------------------------------
47
56
@@ -62,7 +71,23 @@ Revoke user's access to all the projects
62
71
----------------------------------------
63
72
64
73
By disabling the Google Workspace account with email ``[email protected]``,
65
-
you revoke access to all the projects that user had access and disable login on Read the Docs completely for that user.
74
+
you revoke access to all the projects the linked Read the Docs user had access to,
75
+
and disable login on Read the Docs completely for that user.
76
+
77
+
.. warning::
78
+
79
+
If the user signed up to Read the Docs previously to enabling SSO with Google Workspace on your organization,
80
+
they may still have access to their account and projects if they were manually added to a team.
81
+
82
+
To completely revoke access to a user, remove them from all the teams they are part of.
83
+
84
+
.. warning::
85
+
86
+
If the user was already signed in to Read the Docs when their access was revoked,
87
+
they may still have access to documentation pages until their session expires.
88
+
This is three days for the dashboard and documentation pages.
89
+
90
+
To completely revoke access to a user, remove them from all the teams they are part of.
0 commit comments