I have one mysql database where my users are stored. All users are in a specific group. I also have many nextcloud instances on the same server.
Currently, all my instances with “user_sql” backend automatically generate all users I have in my database.
I’d like to use my users database for all instances but without having all accounts on all instances.
I have users bob in the group “example1”, and mike in the group “example2”.
Instance “nc.example1.com” only allow users in the group “example1” (bob), and instance “nc.example2.com” only allow users in the group “example2” (mike).
Is its possible? Do you know the way to do that please?
you should not point multiple NC instances to the same database. each NC should use a dedicated database (but may share same DB server if required). then users are automatically separated and isolated from each other.
@Thom1
The problem is that for every user is not only username and password but also a lot of other user information stored. For centralized user management, LDAP or active directory is used nowadays. You can connect your Nextclouds to one central user management (LDAP, Active Directory). But there are user, password and e.g. a few groups but not all user information from your Nextcloud included.
Thanks for your answers. I’m sorry, I didn’t explain correctly, and my english is not very good.
Every nextcloud instance has its own database, of course. I also store my email account (for postfix/dovecot) on a dedicated mysql database. I always use “user_external” app on nextcloud with imap authentification to “link” an email account to a nextcloud account. This way every user has only one account for mail and nextcloud.
But “user_external” app seems abandonned so I’m trying to directly use my email database with “user_sql” app.
I write a better example:
I have a database for my email account (postfix/dovecot) called “mail”
I have a first instance “nc.example1.com” using a database called “nc1”
I have a second instance “nc.example2.com” using a database called “nc2”
In my mail database, I have a row “group” to know if a user should be able to login to “nc.example1.com” or “nc.example2.com” instance.
What’s happening now? “user_sql” app works fine because I can login to nextcloud using a mail account.
So what’s my issue? Since I setup “user_sql” app on nextcloud, all my email account have a nextcloud account on every instances.
What do I want? I’d like my users to be able to login only on the instance depending on the “group” row in my mail database.
Which part of software do you use?
Can you post a screenshot of your actual configuration?
Perhaps you can write an issue at one of the both above links.
I used “External user authentification” (user_external) since many years and I’m happy with it. But the app seems abandonned. That’s why I want to use “user_sql” now.
Here the screenshot of my user_sql config.
I will write a request on user_sql github. Thanks.
I open an issue on github.
Waiting a real solution, I have a workaround. I made a cron task which disable unwanted users on nextcloud and delete their empty data folder.
