Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow admin can disable the default log in form #565

Closed
fame-odoo opened this issue Oct 11, 2023 · 3 comments
Closed

Allow admin can disable the default log in form #565

fame-odoo opened this issue Oct 11, 2023 · 3 comments
Assignees
@LinkinStars @shuashuai
Labels
enhancement Enhancement request
Milestone
v1.2.1

Comments

@fame-odoo
Copy link

Is your feature request related to a problem? Please describe.
Hello there, I have been self-hosting answer.dev for a while and in order to enhance the security I am thinking of to disable the default log in form, only use the oauth log in.

Describe the solution you'd like
I would like a toggle option in settings page for the admin that we can disable the default log in form.

Describe alternatives you've considered
n/a
@fame-odoo fame-odoo added the enhancement Enhancement request label Oct 11, 2023
@fenbox
Copy link
Member

fenbox commented Oct 12, 2023

Thank you for your advice.

Disable password login is a dangerous option, and we also need to consider the option of recovery when it is closed by mistake.

@fenbox fenbox self-assigned this Oct 12, 2023
@fenbox fenbox moved this to Todo in Answer Roadmap Oct 18, 2023
@fenbox fenbox added this to the v1.2.1 milestone Oct 18, 2023
@jihuayu
Copy link
Member

jihuayu commented Oct 22, 2023
edited
Loading

We can consider not disabling the password login functionality for administrators. Or we can choose not to disable password login for specific IP addresses, such as "localhost".

@fenbox fenbox mentioned this issue Oct 29, 2023
Closed
@fenbox fenbox moved this to Todo in Answer Roadmap Nov 1, 2023
@fenbox fenbox moved this from Todo to In Progress in Answer Roadmap Nov 3, 2023
@fenbox fenbox moved this from In Progress to Todo in Answer Roadmap Nov 3, 2023
@fenbox fenbox moved this from Todo to In Progress in Answer Roadmap Nov 8, 2023
@fenbox fenbox assigned LinkinStars and shuashuai and unassigned fenbox Nov 8, 2023
shuashuai added a commit that referenced this issue Nov 14, 2023
@shuashuai
feat: allow admin can disable the default log in form #565
d736547
@fenbox fenbox moved this from In Progress to Review in Answer Roadmap Nov 21, 2023
@fenbox fenbox moved this from Review to Done in Answer Roadmap Nov 27, 2023
@ignatz
Copy link

ignatz commented Dec 10, 2023

+1 to the request.

Just to add to the list of options: relegate the default password login to an additional/alternative non-public path.

@fenbox fenbox closed this as completed Dec 14, 2023
@github-project-automation github-project-automation bot moved this from Todo to Done in Answer Roadmap Dec 14, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@LinkinStars LinkinStars

@shuashuai shuashuai

Labels
enhancement Enhancement request
Projects
Answer Roadmap
Archived in project
Milestone
v1.2.1
Development

No branches or pull requests
6 participants
@ignatz @fenbox @LinkinStars @shuashuai @jihuayu @fame-odoo