docs for disable/delete/anon, need to move to user admin section

[scolapasta]

What this PR does / why we need it:
docs for delete
Which issue(s) this PR closes:

Closes #

Special notes for your reviewer:
work in progress.

Suggestions on how to test this:

Does this PR introduce a user interface change? If mockups are available, please link/include them here:

Is there a release notes update needed for this change?:

Additional documentation:

[djbrooke]

@pdurbin @scolapasta I've made the changes discussed last week and the docs reflect my current understanding of where we're planning to go with this.

Thoughts on what to do with this draft PR? @pdurbin I know you're into the code on another branch, so if you want to merge this into your branch, great, or we can do something else if y'all have better ideas.

[pdurbin]

I left a few comments.

With regard to getting this content into my branch, worst case we can just copy and paste it in at the end.

[mheppler]

We need to add something that prevents a user from recreating a disabled account with the same username and/or email.

[djbrooke]

@mheppler Can you talk a bit more about why? Is this the case of a malicious user or something else?

[mheppler]

The first bullet here suggests we disable a user account in order to "disable the user's ability to log in to the Dataverse installation"... seems obvious that we don't leave the front door of the house open if we're trying to add a lock to the back door. I don't have a specific use case in mind. I don't see a list of use cases here in the guides, so I can't point to an existing one. Not trying to expand the scope or make more work for anyone. Just making sure we achieve what we set out to do.

[djbrooke]

@mheppler thanks. As a concrete example, you're saying that if I have an account with danny@harvard.edu that gets disabled by an admin, I wouldn't be able to create a new account using danny@harvard.edu?

[mheppler]

Yeah, email or username, both fields are validated on create to be unique.

[pdurbin]

Just chiming in to make sure I understand. You both seem to be using "builtin" user examples (which is fine) but it applies equally to shib/oauth/oidc. For example, if my ORCID account is disabled on the Dataverse side, I am no longer able to create a Dataverse account using my ORCID account. Instead of a conflict of email addresses (like with builtin users) what's conflicting is the unique identifier within ORCID. Same with Shib (eppn is the unique identifier we use), etc.

[djbrooke]

I pushed e9845c0 to reflect my understanding but am not super happy with the phrasing. Feedback welcome.

[pdurbin]

Just chiming in to make sure I understand. You both seem to be using "builtin" user examples (which is fine) but it applies equally to shib/oauth/oidc. For example, if my ORCID account is disabled on the Dataverse side, I am no longer able to create a Dataverse account using my ORCID account. Instead of a conflict of email addresses (like with builtin users) what's conflicting is the unique identifier within ORCID. Same with Shib (eppn is the unique identifier we use), etc.

[pdurbin]

I just wanted to note that currently the authenticateduserlookup rows and builtinuser rows (in the case of Builtin users) are also being kept. There has been a suggestion of deleting these rows (which would surely close the door to a "undisable" option in the future) but I haven't explored it at all. I'm getting closer (I hope) to pushing some working code that we can talk about.

[pdurbin]

Closing in favor of pull request #7629. The branch has been merged there.