pipekit/config.yaml
Paul Trowbridge 31135cf5be web: add session-cookie login for web UI
- New pipekit/web/auth.py: itsdangerous-signed cookie, 8hr expiry,
  auto-generates signing secret in settings table on first use
- GET/POST /login and POST /logout routes (public, no auth dependency)
- All other web routes protected via router-level require_web_auth dep
- Starlette middleware injects request.state.current_user for templates
- Topbar shows logged-in username + logout button when session active
- Reuses existing api_user/api_pass credentials and api_auth_enabled flag
- Add itsdangerous>=2.1 to requirements.txt
- Enable api_auth_enabled in config.yaml

Co-Authored-By: Claude Sonnet 4.6 (1M context) <noreply@anthropic.com>
2026-06-04 13:21:50 -04:00

12 lines
262 B
YAML

database: /opt/pipekit/pipekit.db
api_auth_enabled: true
jrunner_path: /usr/local/bin/jrunner
driver_dir: /opt/pipekit/drivers/
api_host: 0.0.0.0
api_port: 8200
# smtp:
# host: smtp.example.com
# port: 587
# from: etl@example.com
# to: admin@example.com