BOMnipotent v0.7.0 takes care of GDPR conformance
Expired users are removed after a configuable period.
If you offer a product or service in the European union, you have to comply with the General Data Protection Regulation (GDPR). One important aspect is that userdata is not stored longer than required. Beginning with version 0.7.0, BOMnipotent takes care of this for you: User accounts with expired keys are automatically removed after 30 days. Because the ideal period depends on the context, you can freely adjust it via a configuration.
Taking full advantage of the fact that this is probably the last release before version 1.0.0, BOMnipotent bundled several user-specific configurations under the “[user]” section. Furthermore, it fully replaced the “email” option with “user”, and made some adjustments of the existence-checking commands. These are expected to be the last breaking changes for the foreseeable future.
You can find the full changelog in the documentation.