Passwordless dashboard #767
Comments
|
I can see the usefulness of this feature, but maybe implementation details can be polished: Can only admin users post public messages? Do these public messages appear on the feeds of logged in users? Should we allow unauthenticated websocket connections. Opening an RFC to gauge interest and exact use case, please react 👍 if you want this feature too. Related: #678 it seems in general there is a need for some kind of mechanism to make messages cross user boundaries. |
|
I currently use free Slack account so different home automation services can post (with authentication) but I can not embed that in a iframe without authentication. Gotify seems to me something that can be hosted locally but still requires authentication to see them. I suppose "public" will be defined by the token used.. so messages from particular services will be all public, visible by anyone, on a link accessible before being logged in. |
|
Thanks for the input, I think it is possible with reasonable complexity (I can't guarantee it will be done in the near future though because I will have to look through existing code to make sure it doesn't exacerbate existing issues like XSS/CSRF and likely will be done after #695 ). |
Is your feature request related to a problem? Please describe.
Using password for sending messages is fine. However I would like to be able to display the server web page without password on a screen without a need for password.
Describe the solution you'd like
Some apps should have a switch "public" and the messages from these clients should be displayed on a "public" page
It should be only list of messages:
Describe alternatives you've considered
Should work in a iframe
Additional context
The text was updated successfully, but these errors were encountered: