Will authentication be available anytime soon? Currently, the razberry API allows public access to anyone that knows the IP address and the port.
Thanks,
Authentication
Yes, it will. We will use
Yes, it will. We will use Basic Authentication with HTTPS (SSL). In a few weeks it will become available.
-
- Posts: 2
- Joined: 11 Sep 2013 01:29
Will it?
Hope it will and if you have stop the project I would like to request you to release it as open source so the community could continue it and update the software.
Authentication is something really important cause otherwise our Z-Wave devices are exposed to everyone who knows the IP address of the RPi.
Authentication is something really important cause otherwise our Z-Wave devices are exposed to everyone who knows the IP address of the RPi.
It is not a good idea to
It is not a good idea to expose your RPi to the word. We have reconsidered the issue with authentication and decided not to implement it directly in Z-Way package.
We now have our own remote access service with authentication. We also suggest to use ngnix or similar tools to make authentication, since different users asks for different level of authentication and access level.
We now have our own remote access service with authentication. We also suggest to use ngnix or similar tools to make authentication, since different users asks for different level of authentication and access level.
binding to 127.0.0.1 only
In order to make it work with nginx as reversed proxy we need to be able to have the z-way-server listen to 127.0.0.1 only or else authentication can still be bypassed. Is there a way to limit the address(es) that the z-way-server listens to?
(I know I can setup iptable rules for this but the above method is way more elegant)
Regards
Marcel
(I know I can setup iptable rules for this but the above method is way more elegant)
Regards
Marcel
Added to feature requests. So
Added to feature requests. So far you can use iptables.