From 4c9a2bf28f6d04c644cb5f75c5ebe30c6259b217 Mon Sep 17 00:00:00 2001 From: Nick Sweeting Date: Wed, 8 May 2024 19:49:22 -0700 Subject: [PATCH] Updated Setting up Authentication (markdown) --- Setting-up-Authentication.md | 13 +++++++------ 1 file changed, 7 insertions(+), 6 deletions(-) diff --git a/Setting-up-Authentication.md b/Setting-up-Authentication.md index 045044b..e69636e 100644 --- a/Setting-up-Authentication.md +++ b/Setting-up-Authentication.md @@ -23,6 +23,13 @@ Use these three options to set up your desired permissions for non-admin guest u - [Wiki: Configuration (`PUBLIC_ADD_VIEW`, `PUBLIC_SNAPSHOTS`, `PUBLIC_INDEX`)]() - [Wiki: Security Overview](https://github.com/ArchiveBox/ArchiveBox/wiki/Security-Overview) +
+
+ +> [!WARNING] +> Make sure you've **set up your [Web UI permissions](https://github.com/ArchiveBox/ArchiveBox/wiki/Configuration#public_index--public_snapshots--public_add_view) first above** to restrict public access. +> Configuring advanced auth methods below is pointless if your Web UI permissions allow unrestricted access to guests! +
## Admin Web UI Authentication Methods @@ -51,12 +58,6 @@ and you can change your password in the UI here: `http://127.0.0.1:8000/admin/pa

-> [!WARNING] -> Make sure you've **set up your [Web UI permissions](https://github.com/ArchiveBox/ArchiveBox/wiki/Configuration#public_index--public_snapshots--public_add_view) first above** to restrict public access. -> Configuring advanced auth methods below is pointless if your Web UI permissions allow unrestricted access to guests! - -
- ### Reverse Proxy Authentication > Can be used with a reverse proxy auth provider like [oauth2-proxy](https://github.com/oauth2-proxy/oauth2-proxy), [Cloudflare Zero Trust](https://developers.cloudflare.com/cloudflare-one/tutorials/access-workers/#create-a-worker-with-custom-headers), [Authentik](https://docs.goauthentik.io/docs/providers/proxy/), and others.