neko icon indicating copy to clipboard operation
neko copied to clipboard
verified publisher icon m1k1o

Remove authentication

Open saba-khadivi opened this issue 9 months ago • 4 comments

I’d like to completely remove any form of authentication from Neko, so users can directly access the session without needing a password.

I’ve tried removing the password-related environment variables (NEKO_PASSWORD, etc.), but Neko seems to fall back to a default password instead.

Is there a proper way to fully disable authentication? Ideally, I want users to join the browser session without being prompted for a password at all.

saba-khadivi avatar Apr 01 '25 19:04 saba-khadivi

Setup some password and put it to URL as ?pwd=neko. Then anyone with the link will be prompted just for a name. If you don't even want that, set ?usr=User to prefill that.

You can use proxy rewrite to hide those parameters from user and have a "clean" URL.

m1k1o avatar Apr 01 '25 19:04 m1k1o

Does it work behind nginx reverse proxy?

saba-khadivi avatar Apr 02 '25 10:04 saba-khadivi

Why shouldn't it?

Also what about this? https://neko.m1k1o.net/docs/v3/configuration/authentication#member.noauth

Pyenb avatar Apr 02 '25 10:04 Pyenb

Member noauth would currently allow any password but it would not tell the gui to not ask for a password. So you would still need the ?pwd=<anything>.

m1k1o avatar Apr 03 '25 12:04 m1k1o