Does username / password authentication to the web ui exist in v2? #385
-
|
I read everything I could find and think I've inferred that v2 has no authentication capability. The v2 web UI is publically visible on the network, and literally anyone with network access as full control. Reading the 3.0 documentation it sounds authentication is a feature there, and it sounds an awful lot like HTTP Basic Authentication. Questions before I break things my first day using this. Am I correct in my assumptions above? |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment
-
|
Authentication is available in ESP3D 2.1 and 3.0 but is not enabled by default : 3.0:https://github.com/luc-github/ESP3D/blob/3.0/esp3d/configuration.h#L540-L543 The current mechanism is basic but it is not the basic Auth - The login / password are send in POST then the FW keep tracking of the request of the IP and the Cookie generated by the IP and time. If no refresh between 3 min the cookie is revocate and need a new Login / password.
No, the webserver is not httpd but espressif webserver which is very light due to MCU performance
2.1 is frozen version Note WebUI is not a stand alone solution it go with corresponding FW and Specific Version |
Beta Was this translation helpful? Give feedback.
Authentication is available in ESP3D 2.1 and 3.0 but is not enabled by default :
2.1: https://github.com/luc-github/ESP3D/blob/2.1.x/esp3d/config.h#L88-L89
https://github.com/luc-github/ESP3D/?tab=readme-ov-file#default-configuration
3.0:https://github.com/luc-github/ESP3D/blob/3.0/esp3d/configuration.h#L540-L543
http://esp3d.io/esp3d/v3.x/documentation/authentication/index.html
The current mechanism is basic but it is not the basic Auth - The login / password are send in POST then the FW keep tracking of the request of the IP and the Cookie generated by the IP and time. If no refresh between 3 min the cookie is revocate and need a new Login / password.
Because there is no support of http…