transfer.sh icon indicating copy to clipboard operation
transfer.sh copied to clipboard
verified publisher icon dutchcoders

would it be possible to set/use authorization tokens to limit who can upload?

Open andrewzah opened this issue 3 years ago • 3 comments

I want to create an instance to let some people upload, but only if they pass an authorization token. This is different than the basic auth handler, which doesn't make sense for multiple people.

This could be an array of strings, statically set in the config.

andrewzah avatar May 14 '22 20:05 andrewzah

there's the option to ask for an http basic authorization:

http-auth-user | user for basic http auth on upload |   | HTTP_AUTH_USER
http-auth-pass | pass for basic http auth on upload |   | HTTP_AUTH_PASS

paolafrancesca avatar May 14 '22 23:05 paolafrancesca

Is it possible to set multiple? Ideally I’d like to set a token per person in case it needs to be revoked or changed.

andrewzah avatar May 15 '22 03:05 andrewzah

@andrewzah it's not possible to set multiple credentials: I will look into in ad an --http-auth-htpasswd param so that the credentials are read from an htpasswd file

paolafrancesca avatar May 15 '22 08:05 paolafrancesca

I will look into in ad an --http-auth-htpasswd param so that the credentials are read from an htpasswd file

I will work on it as soon I'll have a little more time

paolafrancesca avatar Dec 22 '22 09:12 paolafrancesca

@andrewzah see #537

paolafrancesca avatar Mar 12 '23 02:03 paolafrancesca