Macrisu
commented
2 years ago This is a big problem, but the development of the free v1 version seems to be stopped in favour of the commercial available Evse-WIFI v2
I suggest asking here about this: https://board.evse-wifi.de/
Hi,
I really love this project, use it daily, and enjoy that I have both: A nice end-user UI and an API for automating things. One fact, however, strikes me as a little weird: There is no option to disable authentication for the web-UI — which could be responsible in a well-secured home-internal IoT-Network. However, the API has no ability to be protected at all. So any attacker who has access can just fire requests to the API to trigger whatever malicious behavior he wanted to trigger, without caring about the authentication.
I think it would be nice to be flexible and offer both:
Thanks for your continued work on this ^_^