Auth: disable via cli flag

[naltatis]

Add a --disable-auth flag to disable the authentication system. All requests will be treaded as admin user requests.

• 👮 useful when running evcc behind a dedicated authentication layer (reverse proxy, ...)
• 🏃‍♀️‍➡️ easier, when using evcc in an automated way (e.g. e2e tests, headless, ...)

\cc @panzerdev

[panzerdev]

Thanks for considering my suggestion!

If there would be plans to add auth provider for SSO or others, maybe the flag could already be --auth-provider=none or --auth-provider=evccand later --auth-provider=google or so?

[naltatis]

If there would be plans to add auth provider for SSO

Interesting idea. Right now I don't see the need to e.g. add multi-user support or integrate with other auth-systems since our primary focus is private use cases. Remote access might be a topic in the not so distant future, but I guess even then, we'll probably start with a private tunnel route and not necessarily integration with a public/external auth provider.

[panzerdev]

add multi-user support or integrate with other auth-systems since our primary focus is private use cases.

I am unsing google SSO for my private setup as an SSO provider to not have to think about auth. Thas's a private usecaes. In the end to the application it's the same JWT concept as now but the checking is done against the SSO provider.

A tunnel build into evcc seems way more overkill then having an sso that is easily setup.

[naltatis]

I am unsing google SSO for my private setup as an SSO provider to not have to think about auth. Thas's a private usecaes.

I'd assume you're quite special in this regard, and not a lot of our user base does this. Let's postpone the auth provider discussion and focus on the option to disable here.

[andig]

Best way to do this is using an auth provider wirh Docker. No plans to rebuild this in evcc.