Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(deployment): basic http auth for website #2191

Merged
merged 16 commits into from
Jun 28, 2024
Merged

feat(deployment): basic http auth for website #2191

merged 16 commits into from
Jun 28, 2024

Conversation

theosanderson
Copy link
Member

@theosanderson theosanderson commented Jun 27, 2024
edited
Loading

Adds configurable basic HTTP auth for the website only. If a basicauth secret is configured, which can be done as shown here (one could also use a sealed secret, one would have to generate its contents with htpasswd then seal it).

N.B. This does not protect all data, which can still be accessed e.g. with LAPIS or potentially the backend.

This will apply to all preview instances but not to e.g. the pathoplexus demo until configured.

https://auth.loculus.org/

username: loculus
password: widetailpotato

@theosanderson theosanderson added the preview Triggers a deployment to argocd label Jun 27, 2024
@theosanderson theosanderson changed the title wip auth feat(deployment): basic http auth for website Jun 27, 2024
@theosanderson theosanderson added the review please PR waiting for final review label Jun 27, 2024
@anna-parker
Copy link
Contributor

I really like the idea of having this for the preview instances - how easy would it be to keep this for the preview instances when we go live and remove it for production?

chaoran-chen
chaoran-chen approved these changes Jun 28, 2024
View reviewed changes
Copy link
Member

@chaoran-chen chaoran-chen left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Amazing - great and very fast work, Theo!

@theosanderson
Copy link
Member Author

I really like the idea of having this for the preview instances - how easy would it be to keep this for the preview instances when we go live and remove it for production?

It could be possible, but it wouldn't really accord with an open source / open development model IMO.

@theosanderson theosanderson merged commit 8733880 into main Jun 28, 2024
8 checks passed
@theosanderson theosanderson deleted the auth branch June 28, 2024 13:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@chaoran-chen chaoran-chen chaoran-chen approved these changes

@corneliusroemer corneliusroemer Awaiting requested review from corneliusroemer

@anna-parker anna-parker Awaiting requested review from anna-parker

Assignees
No one assigned
Labels
preview Triggers a deployment to argocd review please PR waiting for final review
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@theosanderson @anna-parker @chaoran-chen