Security
Configuring user security will require users to login and processing nodes to provide the Access Token to connect.
Users must be added before they can sign in or before you can use this feature.
Modes
- None
- No security is required, this is the default
- Local User
- Local users are created and authenticated using username and passwords.
- Open ID Connect
- Authentication is handled by a third party Open ID Connect provider, users must still be added, but they are authorized using the third party site.
Access Token
This is a token required by processing nodes to connect to the server when security is enabled. If this access token is not provided, the processing node will not be able to connect.
Token Expiry
The duration of the login token before it expires.
Local Users
Max Attempts
The maximum number of login attempts the user is allowed before they are temporarily blocked
Lockout Duration
The duration in minutes the user will be locked out for before they can reattempt a login.
Open ID Connect
Authority
The URL of the Open ID Connect provider (e.g., https://accounts.google.com/).
Client ID
The client ID registered with the Open ID Connect provider.
Client Secret
The client secret registered with the Open ID Connect provider.
Callback Address
An optional callback address, you can use this to override the default address this will send to the client. For example if you are behind a reverse proxy and FileFLows is listening on HTTP but the callback should occur on HTTPS.