Skip to content

Remote access, access restriction

Marcus Oskarsson requested to merge gh-ef9852f1/753/marcus-oscarsson/ra-sec into master

Created by: marcus-oscarsson

Hey !

Preliminary work to make remote access a bit more secure:

Implemented the following convention in the login routine:

A user is granted access IFF the following criteria is met:

  • User on local host and valid credentials
  • User on remote host, session already exists and valid credentials

All the routes except login is decorated with the restrict decorator which gives a 404 to anyone without a valid session.

This will be followed up by some more enhancements to the RA feature, such as giving local operators certain privileges to retake control, enable and disable remote access completely.

Cheers, Marcus

Merge request reports

Loading