mirror of
https://github.com/0rangebananaspy/authelia.git
synced 2024-09-14 22:47:21 +07:00
9800421b88
* [FEATURE] Disable Reset Password * add configuration key to authentication_backend called disable_reset_password * disable_reset_password prevents the API handler for the functionality and the UI element * disable_reset_password is a boolean * adjust RememberMeEnabled to be RememberMe instead as it's just unnecessary * add docs for security measures and in the authentication docs * updated config.template.yml * add flexEnd style to align reset password when remember me disabled * add todo items for ldap user/password validation relating to this
855 B
855 B
| layout | title | parent | nav_order | has_children |
|---|---|---|---|---|
| default | Authentication backends | Configuration | 1 | true |
Authentication Backends
There are two ways to store the users along with their password:
- LDAP: users are stored in remote servers like OpenLDAP, OpenAM or Microsoft Active Directory.
- File: users are stored in YAML file with a hashed version of their password.
Disabling Reset Password
You can disable the reset password functionality for additional security as per this configuration:
# The authentication backend to use for verifying user passwords
# and retrieve information such as email address and groups
# users belong to.
#
# There are two supported backends: 'ldap' and 'file'.
authentication_backend:
# Disable both the HTML element and the API for reset password functionality
disable_reset_password: true