subnub
[Question] Accounts management ?
Hello,
The wiki mentions creating an account at the very last sentence, but how are these account managed ?
For instance :
- Can I enable or disable account creation ?
- Can I require an e-mail confirmation or a captcha ?
- Can I create or delete accounts from some admin panel ?
- Can I recover my lost password ?
- Can I enable TOTP 2FA ?
- Can I require a secure password ?
- Can each user use its own password as encryption key ?
- Can I delete my account ?
Thanks
Hello,
There already is a feature to disable account creation, in order to do this you create an environment variable called 'BLOCK_CREATE_ACCOUNT' in the servers config file, and set it equal to 'true'.
In terms of the other features, there will be a big update coming to myDrive which will add the following features you mentioned.
- Email Confirmation
- Recover lost password with email
Also technically the files are already encrypted with a unique key for each user, this key/password is encrypted with both the servers encryption key, and the users password, because if I used the users password to encrypt the files directly, when you change your password you would no longer be able to download your past files.
In terms of the other feature requests like 2FA, and an admins panel, ect, currently there is no concrete plan to add these feature, but I have been requested these features before so I will keep them in mind, and its possible some time in the future they will be added. But like I said atm there is no roadmap for these features.
Understood.
If I would host a public instance of myDrive on my dedicated server with accounts open, I might want to limit the maximum space usage to 10 GB / user for example, can I do that ?
If not, what way would I have to see the usage of each account, and eventually delete it if the user abuses the service ?
Thanks