I need to limit users who can get access to my drone server instance. This drone working with github. I tried to use this variables and set it to my organisation name, but seems like it not changing effect at all; I’m still able to signup/signin into drone with github user who is outside my organisation. Any help to track and fix this problem?

My drone server docker start script:

docker run \
  --volume=/var/lib/drone:/data \
  --env=DRONE_RPC_SECRET=xxx \
  --env=DRONE_TLS_AUTOCERT=true \
  --env=DRONE_SERVER_HOST=xxx \
  --env=DRONE_SERVER_PROTO=https \
  --env=DRONE_OPEN=false \
  --env=DRONE_USER_FILTER=my_organisation_name \
  --publish=443:443 \
  --restart=always \
  --detach=true \
  --name=drone \

DRONE_USER_FILTER can be used to prevent a new account from registering with the system. It will not prevent an existing account from authenticating.

You can review the following code to learn more about how this works:

Thanks @bradrydzewski. Your answer confirm my suspicious and solving that issue :slight_smile: