CasaOS icon indicating copy to clipboard operation
CasaOS copied to clipboard

Published 20 hours ago verified publisher icon IceWhaleTech

Disable Authentication Option

Open clarkhacks opened this issue 1 year ago • 5 comments

Is your feature request related to a problem? Please describe. Because the terminal already requires ssh credentials to access, why not make it possible to disable login altogether for CasaOS? I feel like this would be more straightforward than enabling multiuser support.

Describe the solution you'd like I feel as though the community could benefit from the option to disable authentication and use our own authentication proxy.

Describe alternatives you've considered I understand there could be potential security issues involved, but this software is designed to be run on a machine that you have access to and not over the public internet. With terminal access already being behind its own separate authentication I do not see major security concerns.

Using something such as Traefic, Authela, KeyClock, or CloudFlare Access.

clarkhacks avatar May 23 '23 18:05 clarkhacks

@clarkhacks - do you mean make CasaOS to use Linux builtin users instead of CasaOS' own username and password?

tigerinus avatar Jun 05 '23 01:06 tigerinus

@tigerinus I was meaning more along the lines of having the option to disable the sign-in page. This would allow users to serve CasaOS behind their own authentication method.

The use case I had in mind is one I'm currently running. I have CasaOS installed for my employees to access - current workaround for this was having CloudFlare Access in front of CasaOS and using CloudFlare to inject some javascript that enters a generic username and password then clicks the sign-in button. This is very hacked together as I haven't had time to dig into the CasaOS UI.

clarkhacks avatar Jun 30 '23 01:06 clarkhacks

I see. I think you are talking about SSO (Single Sign-On) - https://en.wikipedia.org/wiki/Single_sign-on.

I agree the value of this feature. It eliminates the need to sign with different passwords for login to CasaOS/OS/whatever apps on the same device.

I'm just not sure how much effort and what's the priority of this need among others.

I will let @ETWang1991 to chime in here.

tigerinus avatar Jun 30 '23 02:06 tigerinus

Is it also possible to disable authentication altogether? I use CasaOS on my LAN; and I would like anyone on the LAN to be able to access it without password or whatsoever.

dkyeremeh avatar Oct 28 '23 09:10 dkyeremeh

totally agree with this feature. perhaps rather than disabling the login, it sounds like this feature could be implemented as a “auto login” into a specific user.

udance4ever avatar Apr 26 '24 21:04 udance4ever