This documents the changes made to TU Delft's version of greenlight to allow openID users to be directly authenticated without administrative intervention, while restricting access for non-TU Delft users.
## Enabling restricted access
To enable restricted access, it has to be enabled in the interface. The path to the setting is:
```
Organization -> Site Settings -> Settings -> Registration Method
```
There, in the pull-down menu, `Approve/Decline` has to be selected. No additional saving of the setting is required. In addition, the same configuration can be done in the docker container's .env file, but the configuration in the database takes precedence.
## Changes to greenlight (codebase)
To enable this change, i.e., to exclude TU Delft users from the approval mechanic, the following change was applied to greenlight: