[FEATURE] Login authentication #57

New Issue

Open

opened 2025-10-09 16:57:15 -05:00 by giteasync · 12 comments

giteasync commented 2025-10-09 16:57:15 -05:00

Owner

Copy Link

Originally created by @olenoerby on GitHub.

What would you like to see implemented next?

I find that the service does not allow user authentication, making it annoying to not have available from a reverse proxy. Please add user authentication as a safety measure.

Originally created by @olenoerby on GitHub. ### What would you like to see implemented next? I find that the service does not allow user authentication, making it annoying to not have available from a reverse proxy. Please add user authentication as a safety measure.

giteasync added the

enhancement

planned

labels 2025-10-09 16:57:15 -05:00

giteasync commented 2025-10-09 16:57:16 -05:00

Author

Owner

Copy Link

@olenoerby commented on GitHub:

I would suggest using basic auth configured through your reverse proxy until this actually gets implemented.

EDIT: It is possible with Cloudflare tunnels and application access policied, but yes, basic authentication would be a fine temporary solution if the user has a reverse proxy service running.

@olenoerby commented on GitHub: > I would suggest using basic auth configured through your reverse proxy until this actually gets implemented. EDIT: It is possible with Cloudflare tunnels and application access policied, but yes, basic authentication would be a fine temporary solution if the user has a reverse proxy service running.

giteasync commented 2025-10-09 16:57:16 -05:00

Author

Owner

Copy Link

@Flaminel commented on GitHub:

I would suggest using basic auth configured through your reverse proxy until this actually gets implemented.

@Flaminel commented on GitHub: I would suggest using basic auth configured through your reverse proxy until this actually gets implemented.

giteasync commented 2025-10-09 16:57:16 -05:00

Author

Owner

Copy Link

@olenoerby commented on GitHub:

A built in security feature will be a more secure choice for many - I am using Cloudflare tunnels through a docker environment, but not all users are this advanced.

But you are correct: Using Cloudflare Tunnels and Cloudflare Access Application policies will also do the trick.

@olenoerby commented on GitHub: A built in security feature will be a more secure choice for many - I am using Cloudflare tunnels through a docker environment, but not all users are this advanced. But you are correct: Using Cloudflare Tunnels and Cloudflare Access Application policies will also do the trick.

giteasync commented 2025-10-09 16:57:16 -05:00

Author

Owner

Copy Link

@AlejandroAkbal commented on GitHub:

Yes, this is a must since all my arr stack is public

Besides that all other services have their own authentication

@AlejandroAkbal commented on GitHub: Yes, this is a must since all my arr stack is public Besides that all other services have their own authentication

giteasync commented 2025-10-09 16:57:16 -05:00

Author

Owner

Copy Link

@Flaminel commented on GitHub:

If I'm not bugging you too much, why is there a need for authentication if you're already using tunnels to connect to your infrastructure? I'm guessing security is the main point of using tunnels, as opposed to opening your ports to the public.

@Flaminel commented on GitHub: If I'm not bugging you too much, why is there a need for authentication if you're already using tunnels to connect to your infrastructure? I'm guessing security is the main point of using tunnels, as opposed to opening your ports to the public.

giteasync commented 2025-10-09 16:57:16 -05:00

Author

Owner

Copy Link

@Flaminel commented on GitHub:

Then why did you close this?

@Flaminel commented on GitHub: Then why did you close this?

giteasync commented 2025-10-09 16:57:16 -05:00

Author

Owner

Copy Link

@olenoerby commented on GitHub:

I have started using Cloudflare tunnel and this is a working solution, but yes, having a built-in authentication frontpage would be a good addition.

@olenoerby commented on GitHub: I have started using Cloudflare tunnel and this is a working solution, but yes, having a built-in authentication frontpage would be a good addition.

giteasync commented 2025-10-09 16:57:16 -05:00

Author

Owner

Copy Link

@Chinoman10 commented on GitHub:

Not sure which 'stack/lib' (if any) the other ARR's use, but BetterAuth provides ample options while having a stellar DX.
Ideally I'd like auth to:

• allow bypassing auth from local requests;
• allow disabling username+password after SSO is enabled/configured (this removes the need to setup a 'fail2ban' rule);

For now, I'm also using CF tunnels with App Access Policy.

@Chinoman10 commented on GitHub: Not sure which 'stack/lib' (if any) the other ARR's use, but **BetterAuth** provides ample options while having a stellar DX. Ideally I'd like auth to: - allow bypassing auth from local requests; - allow disabling username+password after SSO is enabled/configured (_this removes the need to setup a 'fail2ban' rule_); For now, I'm also using CF tunnels with App Access Policy.

giteasync commented 2025-10-09 16:57:16 -05:00

Author

Owner

Copy Link

@zaphod82 commented on GitHub:

In addition, having the ability to secure the UI with a certificate would be great.

@zaphod82 commented on GitHub: In addition, having the ability to secure the UI with a certificate would be great.

giteasync commented 2025-10-09 16:57:16 -05:00

Author

Owner

Copy Link

@olenoerby commented on GitHub:

I was not convinced you were interested in implementing the feature, but I will be looking forward to it.

@olenoerby commented on GitHub: I was not convinced you were interested in implementing the feature, but I will be looking forward to it.

giteasync commented 2025-10-09 16:57:17 -05:00

Author

Owner

Copy Link

@Flaminel commented on GitHub:

It's marked as planned, so it will be done eventually when I get to it.

@Flaminel commented on GitHub: It's marked as planned, so it will be done eventually when I get to it.

giteasync commented 2025-10-09 16:57:17 -05:00

Author

Owner

Copy Link

@olenoerby commented on GitHub:

I appreciate the effort, thanks mate. This is an excellent product.

@olenoerby commented on GitHub: I appreciate the effort, thanks mate. This is an excellent product.

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

add_gotify_notification_provider

fix_deluge_crashing

fix_qbit_connection

dev

fix_qbit_payload_deserialization

v2.5.1

v2.5.0

v2.4.7

v2.4.6

v2.4.5

v2.4.4

v2.4.3

v2.4.2

v2.4.1

v2.4.0

v2.3.3

v2.3.2

v2.3.1

v2.3.0

v2.2.3

v2.2.2

v2.2.1

v2.2.0

v2.1.6

v2.1.5

v2.1.4

v2.1.3

v2.1.2

v2.1.1

v2.1.0

v2.0.19

v2.0.18

v2.0.17

v2.0.16

v2.0.15

v2.0.14

v2.0.13

v2.0.12

v2.0.11

v2.0.10

v2.0.9

v2.0.8

v2.0.7

v2.0.6

v2.0.5

v2.0.4

v2.0.3

v2.0.2

v2.0.1

v2.0.0

v1.6.8

v1.6.7

v1.6.6

v1.6.5

v1.6.4

v1.6.3

v1.6.2

v1.6.1

v1.6.0

v1.5.20

v1.5.19

v1.5.18

v1.5.17

v1.5.16

v1.5.15

v1.5.14

v1.5.13

v1.5.12

v1.5.11

v1.5.10

v1.5.9

v1.5.8

v1.5.7

v1.5.6

v1.5.5

v1.5.4

v1.5.3

v1.5.2

v1.5.1

v1.5.0

v1.4.9

v1.4.8

v1.4.7

v1.4.6

v1.4.5

v1.4.4

v1.4.3

v1.4.2

v1.4.1

v1.4.0

v1.3.6

v1.3.5

v1.3.4

v1.3.3

v1.3.2

v1.3.1

v1.3.0

v1.2.7

v1.2.6

v1.2.5

v1.2.4

v1.2.3

v1.2.2

v1.2.1

v1.2.0

v1.1.1

v1.1.0

v1.0.2

v1.0.1

1.0.0

Labels

Clear labels

bug

enhancement

enhancement

planned

pull-request

Mirrored from GitHub Pull Request

question

No Label

enhancement

planned

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

giteasync

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/Cleanuparr-Cleanuparr#57

No description provided.