- New pipekit/web/auth.py: itsdangerous-signed cookie, 8hr expiry, auto-generates signing secret in settings table on first use - GET/POST /login and POST /logout routes (public, no auth dependency) - All other web routes protected via router-level require_web_auth dep - Starlette middleware injects request.state.current_user for templates - Topbar shows logged-in username + logout button when session active - Reuses existing api_user/api_pass credentials and api_auth_enabled flag - Add itsdangerous>=2.1 to requirements.txt - Enable api_auth_enabled in config.yaml Co-Authored-By: Claude Sonnet 4.6 (1M context) <noreply@anthropic.com>
12 lines
262 B
YAML
12 lines
262 B
YAML
database: /opt/pipekit/pipekit.db
|
|
api_auth_enabled: true
|
|
jrunner_path: /usr/local/bin/jrunner
|
|
driver_dir: /opt/pipekit/drivers/
|
|
api_host: 0.0.0.0
|
|
api_port: 8200
|
|
# smtp:
|
|
# host: smtp.example.com
|
|
# port: 587
|
|
# from: etl@example.com
|
|
# to: admin@example.com
|