Assign a default role to new users and remove the ability to assign empty roles

[saadkadhi]

Request Type

Feature Request

Problem Description

When an administrator creates a new user, no default role is assigned by default. Hence, if they click on Add User, the new user will have no assigned role. This is not desirable and might create confusion.

For instance, we proceed with the creation of a new user whose login name is sabine:

Then we click on Add User:

Suggested Enhancement

Assign by default a normal analyst role to a new user (read and write). Also, make sure that an administrator cannot create an account without assigning a role. Empty roles have no use in my opinion. If we'd like to keep a user out, we just lock the account.

Complementary Information

Please note that users with empty roles are still able to log in. And while they can't see the list of cases nor the flow, they can still click on + New and fill the case creation form only to obtain an error at the end when they click on + Create case. They also get a slew of exceptions:

[saadkadhi]

I can't reproduce the empty role list upon creating a user as shown in the screenshots I've added to the issue. I see now that the role field shows read by default, on Safari 10. TheHive instance is a 2.9.1.

So we need to make sure that there is no edge case where the default role is empty. I'd also suggest we consider changing the default role to read and write as more often than not, administrators will create regular analyst accounts.