Exposing admin-api outside of localhost #23

OlofBlomqvist · 2024-09-11T20:17:41Z

For simplifying development of tools to programatically control the proxy we should allow binding to non-loopback device and only listen to https. Need to be able to configure listening on specific hostname and cors customization thru config file. Also support letsencrypt once pr for that is merged. All requests (both local and external) must require auth.

Support configure password in config file
Enforce TLS for API and WebUI
Require password hash to be included as auth bearer in in requests to the api
Web-UI login screen

OlofBlomqvist added enhancement New feature or request TODO planning to do or already working on it labels Sep 11, 2024

OlofBlomqvist self-assigned this Sep 11, 2024

OlofBlomqvist removed the TODO planning to do or already working on it label Sep 15, 2024

OlofBlomqvist removed their assignment Sep 21, 2024

OlofBlomqvist self-assigned this Nov 14, 2024

OlofBlomqvist added the WIP Someone is working on this label Nov 14, 2024

OlofBlomqvist removed the WIP Someone is working on this label Jan 17, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Exposing admin-api outside of localhost #23

Exposing admin-api outside of localhost #23

OlofBlomqvist commented Sep 11, 2024 •

edited

Loading

Exposing admin-api outside of localhost #23

Exposing admin-api outside of localhost #23

Comments

OlofBlomqvist commented Sep 11, 2024 • edited Loading

OlofBlomqvist commented Sep 11, 2024 •

edited

Loading