mirror of
https://github.com/0rangebananaspy/authelia.git
synced 2024-09-14 22:47:21 +07:00
9800421b88
* [FEATURE] Disable Reset Password * add configuration key to authentication_backend called disable_reset_password * disable_reset_password prevents the API handler for the functionality and the UI element * disable_reset_password is a boolean * adjust RememberMeEnabled to be RememberMe instead as it's just unnecessary * add docs for security measures and in the authentication docs * updated config.template.yml * add flexEnd style to align reset password when remember me disabled * add todo items for ldap user/password validation relating to this
29 lines
855 B
Markdown
29 lines
855 B
Markdown
---
|
|
layout: default
|
|
title: Authentication backends
|
|
parent: Configuration
|
|
nav_order: 1
|
|
has_children: true
|
|
---
|
|
|
|
# Authentication Backends
|
|
|
|
There are two ways to store the users along with their password:
|
|
|
|
* LDAP: users are stored in remote servers like OpenLDAP, OpenAM or Microsoft Active Directory.
|
|
* File: users are stored in YAML file with a hashed version of their password.
|
|
|
|
## Disabling Reset Password
|
|
|
|
You can disable the reset password functionality for additional security as per this configuration:
|
|
|
|
```yaml
|
|
# The authentication backend to use for verifying user passwords
|
|
# and retrieve information such as email address and groups
|
|
# users belong to.
|
|
#
|
|
# There are two supported backends: 'ldap' and 'file'.
|
|
authentication_backend:
|
|
# Disable both the HTML element and the API for reset password functionality
|
|
disable_reset_password: true
|
|
``` |