When users log in, they see all of THEIR repositories, but this is for an org that doesn’t use Enterprise. Is there a way to fix this or is this just how it is?
I don’t want to give any users the ability to have our runners hooking to whatever personal projects they’ve got going on. As well, anyone can register with Github to gain access to Drone? I’m sure this shouldn’t be by design, unless we’re supposed to use IPTables or VLANs to secure this installation which doesn’t seem right.
I’m thoroughly confused on how user management even works. There’s seemingly no admin, when I navigate to User Settings all I see if my token and API access instructions.
I’ve attempted to gather more understanding through the CLI, but I can’t get passed the ambiguous 403 errors.
Are there other docs or somewhere I can learn more about Drone passed the installation?