Authentication for Weave Scope should be enabled in template

[bchav]

Currently, when launching this template and using Weave Scope locally, the Scope web gui is open to the world. By extension this allows unauthenticated exec or SSH into containers.

We can either lock down security groups or enable username/password auth on the web gui.

[amitsudharshan]

has there been any work done on this?

[2opremio]

You can use weave cloud, which has authentication. See https://github.com/weaveworks/integrations/tree/master/aws/ecs#running-weave-scope-in-weave-cloud

On Aug 31, 2016 21:27, "Amit Sudharshan" [email protected] wrote:

has there been any work done on this?

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub https://github.com/weaveworks/integrations/issues/69#issuecomment-243889701, or mute the thread https://github.com/notifications/unsubscribe-auth/ACQOJIf-r-enGgsEOYY_RYL1nILN_xnDks5qleMvgaJpZM4HeaAq .

[2opremio]

(you can also use Weave Cloud with the Cloud Formation template)

On Aug 31, 2016 22:01, "Alfonso Acosta" [email protected] wrote:

You can use weave cloud, which has authentication. See https://github.com/weaveworks/integrations/tree/master/aws/ ecs#running-weave-scope-in-weave-cloud

On Aug 31, 2016 21:27, "Amit Sudharshan" [email protected] wrote:

has there been any work done on this?

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub https://github.com/weaveworks/integrations/issues/69#issuecomment-243889701, or mute the thread https://github.com/notifications/unsubscribe-auth/ACQOJIf-r-enGgsEOYY_RYL1nILN_xnDks5qleMvgaJpZM4HeaAq .