Even though the password has been set, accessing still does not require a password. #3717

liuliran123 · 2023-07-19T01:31:33Z

liuliran123
Jul 19, 2023

In addition, the documentation does not mention any enabled password authentication feature. How can we guarantee security?

TRANS_BY_GPT3

liuliran123 · 2023-07-19T01:31:49Z

liuliran123
Jul 19, 2023
Author

There is also no password authentication feature enabled in the document. How can security be ensured?

TRANS_BY_GPT3

0 replies

Kentsonshum · 2023-07-19T07:04:32Z

Kentsonshum
Jul 19, 2023

Have you read the http.api.auth.conf document carefully? The format is incorrect. You also need to enable auth under the api section.

http_api {
    enabled         on;
    listen          1985;
    auth {
        enabled         on;
        username        admin;
        password        admin;
    }
}

TRANS_BY_GPT3

0 replies

winlinvip · 2023-07-27T01:13:58Z

winlinvip
Jul 27, 2023
Maintainer

Doc is here https://ossrs.io/lts/en-us/docs/v5/doc/http-api#authentication

Thanks @Kentsonshum

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Even though the password has been set, accessing still does not require a password. #3717

{{title}}

{{editor}}'s edit

{{editor}}'s edit

Replies: 3 comments

{{title}}

{{editor}}'s edit

{{editor}}'s edit

{{title}}

{{editor}}'s edit

{{editor}}'s edit

{{title}}

{{editor}}'s edit

{{editor}}'s edit

Select a reply

Even though the password has been set, accessing still does not require a password. #3717

liuliran123 Jul 19, 2023

Replies: 3 comments

liuliran123 Jul 19, 2023 Author

Kentsonshum Jul 19, 2023

winlinvip Jul 27, 2023 Maintainer

liuliran123
Jul 19, 2023

liuliran123
Jul 19, 2023
Author

Kentsonshum
Jul 19, 2023

winlinvip
Jul 27, 2023
Maintainer