mirror of
https://github.com/lldap/lldap.git
synced 2026-04-25 08:15:52 +03:00
[GH-ISSUE #913] [FEATURE REQUEST] Allow to disable the web UI #330
Labels
No labels
backend
blocked
bug
cleanup
dependencies
docker
documentation
duplicate
enhancement
enhancement
frontend
github_actions
good first issue
help wanted
help wanted
integration
invalid
ldap
pull-request
question
rust
rust
tests
wontfix
No milestone
No project
No assignees
1 participant
Notifications
Due date
No due date set.
Dependencies
No dependencies set.
Reference
starred/lldap-lldap#330
Loading…
Add table
Add a link
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Originally created by @williamdes on GitHub (Jun 6, 2024).
Original GitHub issue: https://github.com/lldap/lldap/issues/913
Motivation
I have multiple servers, they do not each need the web UI.
Describe the solution you'd like
Allow to set to
Nonethe web port or host to disable the web server bind.github.com/lldap/lldap@4f050cded5/server/src/main.rs (L170)Describe alternatives you've considered
Not providing the web UI files.
@nitnelave commented on GitHub (Jun 6, 2024):
Hi! I feel like this is better solved using firewall rules. I don't think it's necessary to add an option to disable the web UI. What if you wanted to serve the web UI on 2 ports, would you want an option for that? This would be better solved with a reverse proxy in front.
@nitnelave commented on GitHub (Jun 6, 2024):
Note that disabling the http port would also disable the GraphQL API
@williamdes commented on GitHub (Jun 7, 2024):
Well, yes and no.
I really want that the code is disabled and not to have a warning when the service boots.
@williamdes commented on GitHub (Jun 7, 2024):
Could you re open and consider this feature?
I can make a PR
@nitnelave commented on GitHub (Jun 7, 2024):
I'm not sure I understand, what warning are you seeing?
@williamdes commented on GitHub (Jun 7, 2024):
Delete the app folder and restart. It will complain not having it
@nitnelave commented on GitHub (Jun 7, 2024):
Yes, that's not what I'm suggesting. I'm suggesting a firewall or a reverse proxy in front of it to disable traffic to the web Gui
@williamdes commented on GitHub (Jun 7, 2024):
yes, but that's what I am reporting ;)
First the warning should go away if I do not want to have the web ui running and binding my port.
@nitnelave commented on GitHub (Jun 7, 2024):
I hear you :) I'm trying to reduce the complexity of LLDAP, especially to support unusual cases. How bad would it be to have the static files, bind to a port (HTTP) and disable access to that port in the firewall or proxy?
Are you worried about the resource usage? In terms of CPU, disk space, number of free ports?
I don't have all your constraints.
@williamdes commented on GitHub (Jun 7, 2024):
I am trying to use rust tooling because the mentality is more to not use what you do not need. And I do not need the Web UI at all.
That removes security concerns about the web API and the files itself.
Just do not have what you do not need.
That said, off topic, but Idid not find a way to load custom schemas. And sadly I am back to openldap. 😢
@nitnelave commented on GitHub (Jun 7, 2024):
We can't load ldif schemas, but we have custom user defined attributes which allow you to build your schema. There are some limitations on the filters that you can use, and they don't have a great web UI yet, though.
I'm not convinced by the concerns of resources (it's very cheap to have an interface that you listen to) or security (the main problem would be the one server where you do expose the web UI).