I’m on a project in strapi that uses native strapi authentication to register users.
Works fine, gives me back the token easily. However, in this way, a registration can be made ignoring the project rules if a POST is made via insominia/postman etc… I would like to be able to limit the registration in this route (/api/auth/local/register) by implementing rules such as:
- registration can only be done if the email is from a registered company (example: example@company.com)
and the other user fields cannot be received directly. Only when doing a crud update on a custom controller
Thanks for your help