Skip to content

feat: support forcing internal authentication for selected actions#5912

Open
midoelhawy wants to merge 1 commit into
bluenviron:mainfrom
midoelhawy:support-forcing-using-the-internal-auth-for-some-actions
Open

feat: support forcing internal authentication for selected actions#5912
midoelhawy wants to merge 1 commit into
bluenviron:mainfrom
midoelhawy:support-forcing-using-the-internal-auth-for-some-actions

Conversation

@midoelhawy

Copy link
Copy Markdown

This change adds a new configuration option, authHTTPForceInternalUsersForActions, to allow specific actions to be authenticated using authInternalUsers even when authMethod is set to http.

This is useful when most actions should be authenticated by an external HTTP authentication service, while a small subset (for example publish or api) should use the built-in user database.

Example:

authMethod: http

authHTTPExclude:
  - action: publish
  - action: api
  - action: metrics
  - action: pprof

authHTTPForceInternalUsersForActions:
  - action: publish
  - action: api

authInternalUsers:
  - user: internal
    pass: internal_pass
    permissions:
      - action: publish
      - action: api

With this configuration:

  • publish and api are authenticated using authInternalUsers.
  • metrics and pprof remain excluded from HTTP authentication.
  • All other actions continue to use the configured HTTP authentication endpoint.

@di33y-clear44

Copy link
Copy Markdown

Thank you I'm in the middle of trying now I'm almost there

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants