Restricted acces to instance home page

[josanFFiG]

This is a Feature Proposal

🎩 Description

Organizations are private entities, so they should have the option to restrict acces only to members.
Home URL must redirect to login.

📌 Related issues

📋 Additional Data

• Decidim deployment where you found the issue:
• Browser & version:
• Screenshot:
• Error messages:
• URL to reproduce the error:

[josanFFiG]

This issue, nowadays, is a concret demand for: decidim.fceg.cat

[zuzust]

It is a feature that will be demanded by a bunch of organizations. Although it can be handled on a per-organitzation basis by means of basic authentication mecanisms and the like, it is worth thinking it as an opt-in setting accessible from the org dashboard. Let's think together how to make it possible @josepjaume

[zuzust]

A first approach has been commited in ae137d1. @josanFFiG, whenever we need it on place for a new organization, we just have to tell @josepjaume which is the target www.domini.com@user:password.

I do not close the issue because further discussion regarding how to make it become an opt-in is needed.

[zuzust]

It's clear to me that:

1. this feature should be an opt-in and should be enabled from the organization admin's dashboard;
2. once enabled, unauthenticated users should be redirected to the login form;
3. once enabled, registration link should not be rendered
4. sharing and embedding content should be disabled (this being mandatory or as an option)

@josanFFiG what do you think?

[josanFFiG]

As we have been talking:
3. Could be an opt-in...
For the rest: totally agree with @zuzust !

[zuzust]

Indeed, an organization admin should be able to disable registration from the admin dashboard. This way we'd anticipate future scenarios we know for sure we'll come across.