search

pglombardo / PasswordPusher

🔐 Securely communicate sensitive information with automatic deletion after a certain number of views and/or time has passed. Track who, what and when with full audit logs.
https://pwpush.com
Apache License 2.0
1.78k stars 329 forks source link

Enable Logins for a Password Pusher Deployment #2307

Open Abhishek0237 opened 5 days ago

Abhishek0237 commented 5 days ago

I tried to Enable sign in but i’m getting 500 error when doing sign up..i’m using dcoker compose configuration both my password pusher and database running on the docker containers.can you please help me

github-actions[bot] commented 5 days ago

Hello @Abhishek0237, thanks for contributing to the Password Pusher community! We will respond as soon as possible.

pglombardo commented 5 days ago

Hi @Abhishek0237 - it's most likely a misconfiguration with the email settings. Could you run the validations documented here?

https://github.com/pglombardo/PasswordPusher/wiki/How-to-Validate-and-Test-Email-Settings

Abhishek0237 commented 5 days ago

Hi @pglombardo I will do the same and let you . Thanks for your response ☺️

Abhishek0237 commented 4 days ago

Hi @pglombardo Thanks for help it working now☺️🙌🏼

My other question whenever user sign into their account and try to share password instead of generating the password link and sharing with us is it not possible we admins are directly get notification or password link on our smtp email id whenever users generate the password..

pglombardo commented 3 days ago

Hi @Abhishek0237 - excellent on email working now.

As for the second question, I apologize but I don't understand. Could you rephrase it?

Abhishek0237 commented 3 days ago

Hello, @pglombardo My intended meaning was when a user logs into Password Pusher and want to distribute their password. Is it feasible that when they establish a password, we will automatically receive a link in our email and we will only receive notices by email that the user has made a password?

pglombardo commented 2 days ago

Ah ok I get it. We don't have application wide activity notifications currently.

Alternatively you can can log into the Admin Dashboard and check users and their activity from time to time.

Does this help in what you want to do?

Abhishek0237 commented 2 days ago

Thanks for the information

Is it not possible to check the password shared by user from Admin dashboard?

Abhishek0237 commented 2 days ago

I got,How we can check the password.Thanks for help

pglombardo commented 2 days ago

Where are you hosting the application?

Abhishek0237 commented 2 days ago

In docker

pglombardo commented 1 day ago

Is it not possible to check the password shared by user from Admin dashboard?

Not possible. That would lessen the security of the application. Push content is encrypted and in the database until expiration.

Abhishek0237 commented 1 day ago

Okay Thanks for the confirmation @pglombardo

Abhishek0237 commented 1 day ago

One thing more @pglombardo do we enable the 2fa for logins,specially for admin account..

pglombardo commented 1 day ago

Hi @Abhishek0237 - 2FA isn't supported yet but it's coming soon!