From 0a11137f17b427e686c7ca4c0a841e33990a73b3 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?S=C3=A9bastien=20WENSKE?= Date: Tue, 8 Apr 2025 10:53:51 +0200 Subject: [PATCH 1/3] chore(config): PromMetricsNoAuth --- users/config.rst | 3 +++ 1 file changed, 3 insertions(+) diff --git a/users/config.rst b/users/config.rst index d0e848a5..562e5591 100644 --- a/users/config.rst +++ b/users/config.rst @@ -948,6 +948,9 @@ The following child elements may be present: When this setting is disabled, the GUI will not send 401 responses so users won't see browser popups prompting for username and password. +.. option:: gui.promMetricsNoAuth + + If true, this allows access to the '/metrics' without authentication. LDAP Element ------------ From db85c4425ba62545fe9cf5d742594c30f94ef77d Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?S=C3=A9bastien=20WENSKE?= Date: Sun, 13 Apr 2025 08:22:13 +0200 Subject: [PATCH 2/3] fix: rename option name --- users/config.rst | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/users/config.rst b/users/config.rst index 562e5591..541d85c1 100644 --- a/users/config.rst +++ b/users/config.rst @@ -941,14 +941,14 @@ The following child elements may be present: When this setting is enabled, the GUI will respond to unauthenticated requests with a 401 response prompting for Basic Authorization, so that - ``https://user:pass@localhost`` style URLs continue to work in standard + ``https://user`:pass@localhost`` style URLs continue to work in standard browsers. Other clients that always send the ``Authorization`` request header do not need this setting. When this setting is disabled, the GUI will not send 401 responses so users won't see browser popups prompting for username and password. -.. option:: gui.promMetricsNoAuth +.. option:: gui.metricsWithoutAuth If true, this allows access to the '/metrics' without authentication. From 3c6bf72dd4e5cb9dc4309fb97c26d015cfe33f44 Mon Sep 17 00:00:00 2001 From: Jakob Borg Date: Sun, 13 Apr 2025 09:33:51 +0200 Subject: [PATCH 3/3] Update users/config.rst --- users/config.rst | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/users/config.rst b/users/config.rst index 541d85c1..c5c57fae 100644 --- a/users/config.rst +++ b/users/config.rst @@ -941,7 +941,7 @@ The following child elements may be present: When this setting is enabled, the GUI will respond to unauthenticated requests with a 401 response prompting for Basic Authorization, so that - ``https://user`:pass@localhost`` style URLs continue to work in standard + ``https://user:pass@localhost`` style URLs continue to work in standard browsers. Other clients that always send the ``Authorization`` request header do not need this setting.