Drone registration is open by default. This means any user can create a Drone account and use the system. This article describes how to lock down the system and limit registration to authorized accounts.
You can limit registration by passing the
DRONE_USER_FILTER environment variable to your Drone server. This variable provides a comma-separated lists of user and organizations accounts that are permitted to register.
Example configuration limits access to a named list of users:
Example configuration limits access to individuals that are members of named organizations (e.g. github organization). In the below example, only users that are members of the google and kubernetes organizations can create Drone accounts.
Example configuration combines user and organization limits: