Skip to main content

Security

Configuring user security will require users to login and processing nodes to provide the Access Token to connect.

Users must be added before they can sign in or before you can use this feature.

Modes

  • None
    • No security is required, this is the default
  • Local User
    • Local users are created and authenticated using username and passwords.
  • Open ID Connect
    • Authentication is handled by a third party Open ID Connect provider, users must still be added, but they are authorized using the third party site.

Access Token

This is a token required by processing nodes to connect to the server when security is enabled. If this access token is not provided, the processing node will not be able to connect.

Token Expiry

The duration of the login token before it expires.

Local Users

Max Attempts

The maximum number of login attempts the user is allowed before they are temporarily blocked

Lockout Duration

The duration in minutes the user will be locked out for before they can reattempt a login.

Open ID Connect

Authority

The URL of the Open ID Connect provider (e.g., https://accounts.google.com/).

Client ID

The client ID registered with the Open ID Connect provider.

Client Secret

The client secret registered with the Open ID Connect provider.

Callback Address

An optional callback address, you can use this to override the default address this will send to the client. For example if you are behind a reverse proxy and FileFLows is listening on HTTP but the callback should occur on HTTPS.