Skip to content
GitLab
    • GitLab: the DevOps platform
    • Explore GitLab
    • Install GitLab
    • How GitLab compares
    • Get started
    • GitLab docs
    • GitLab Learn
  • Pricing
  • Talk to an expert
  • /
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
    • Switch to GitLab Next
    Projects Groups Topics Snippets
  • Register
  • Sign in
  • GitLab GitLab
  • Project information
    • Project information
    • Activity
    • Labels
    • Members
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributor statistics
    • Graph
    • Compare revisions
    • Locked files
  • Issues 52,387
    • Issues 52,387
    • List
    • Boards
    • Service Desk
    • Milestones
    • Iterations
    • Requirements
  • Merge requests 1,552
    • Merge requests 1,552
  • CI/CD
    • CI/CD
    • Pipelines
    • Jobs
    • Artifacts
    • Schedules
    • Test cases
  • Deployments
    • Deployments
    • Environments
    • Releases
  • Packages and registries
    • Packages and registries
    • Package Registry
    • Container Registry
    • Infrastructure Registry
  • Monitor
    • Monitor
    • Metrics
    • Incidents
  • Analytics
    • Analytics
    • Value stream
    • CI/CD
    • Code review
    • Insights
    • Issue
    • Repository
  • Snippets
    • Snippets
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
Collapse sidebar
  • GitLab.orgGitLab.org
  • GitLabGitLab
  • Issues
  • #352514
Closed
Open
Issue created Feb 10, 2022 by Cynthia "Arty" Ng@cynthiaDeveloper

Automatically delete unverified unconfirmed users after number of days

Proposal

Allow an admin to turn on automatic removal of unconfirmed/unverified users after a specified number of days.

Rationale

Especially on GitLab.com, we have a lot of accounts with non-existent emails (typos, misconfigured SCIM/SAML) which are never verified/confirmed.

As a result, we get a lot of Support requests. See #29279 (closed) for a long list.

Implementation

  • Allow some way to turn it on/off (gitlab.rb, admin UI, or API). Preferably Admin/API.
  • Set to 7 days by default (allow the number of days to be configurable if it does not increase the weight of the issue)
  • Add wording that it will auto delete if not confirmed in (ideally, all of) the following:
    • post-registration "Almost there..." page
    • confirmation email

Workaround

  • For Self-managed, admins can delete the accounts through any number of methods.
  • For SaaS, GitLab Support will delete the account manually if it's the cause of another issue.
Edited Dec 21, 2022 by Cynthia "Arty" Ng
Assignee
Assign to
Time tracking