Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

The backend web UI management does not have a password, and any user can operate it, which is not secure #1206

Closed
mmm8955405 opened this issue Sep 12, 2023 · 6 comments
Closed

The backend web UI management does not have a password, and any user can operate it, which is not secure #1206

mmm8955405 opened this issue Sep 12, 2023 · 6 comments
Labels
feature New feature or request

Comments

@mmm8955405
Copy link

mmm8955405 commented Sep 12, 2023
edited by lovromazgon
Loading

Feature description

Add backend administrator password
@mmm8955405 mmm8955405 added bug Something isn't working triage Needs to be triaged labels Sep 12, 2023
@lovromazgon lovromazgon added feature New feature or request and removed bug Something isn't working labels Sep 12, 2023
@lovromazgon
Copy link
Member

Hi @mmm8955405! This seems more like a feature request than a bug, so I marked it as such. The current UI is not meant to be publicly hosted, although we have discussed adding user management to Conduit, but there were more essential features we had to focus on.

In the meantime, while this is not implemented in Conduit, I propose you look into adding a proxy server that sets up authentication in front of Conduit (e.g. nginx).

@lovromazgon lovromazgon removed the triage Needs to be triaged label Sep 12, 2023
@devarispbrown
Copy link

@mmm8955405 can you talk more about what you're trying to do that you would need a password for the UI?

@mmm8955405
Copy link
Author

Hi @mmm8955405! This seems more like a feature request than a bug, so I marked it as such. The current UI is not meant to be publicly hosted, although we have discussed adding user management to Conduit, but there were more essential features we had to focus on.

In the meantime, while this is not implemented in Conduit, I propose you look into adding a proxy server that sets up authentication in front of Conduit (e.g. nginx).

Okay, but I think we need the password for the UI

@mmm8955405
Copy link
Author

@mmm8955405 can you talk more about what you're trying to do that you would need a password for the UI?

Yes, a password for the UI should be required. Even though there is still a lot to be done at the moment

@mmm8955405
Copy link
Author

There may still be some issues at present. In the latest Docker image:
#1207

@lovromazgon
Copy link
Member

UI will be deprecated soon, see #1911.

@lovromazgon lovromazgon closed this as not planned Won't fix, can't repro, duplicate, stale Oct 17, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@devarispbrown @mmm8955405 @lovromazgon