access management

[m-gavrilyuk]

Is it possible to access only to add new client for some users in piserver ?

[maxnet]

Not sure if I understand the question.

By default you need to be a user that is part of the sudo group to access the Piserver GUI. Or is that not what you are asking?

[m-gavrilyuk]

No. I want add local users but only with right to add new client on piserver. Other functions must be disabled

[maxnet]

You want to let other staff login locally on the computer that runs the Piserver software, and allow them to only add extra Pi MAC addresses to the system, but do not let them do anything else?

[m-gavrilyuk]

Yes. there are no other ideas for delimiting rights

[maxnet]

That is not something we support.

Not sure if I understand the exact need for it either. I would have expected that adding new Pi to the system is something one would do a lot less often, than say reset the password of an user that forget his.

[m-gavrilyuk]

I use piserver for information display in kiosk mode so they all with autologon and no need to manage users Thanks i will hope other staff dont crash server.

[m-gavrilyuk]

Can you tell me please. how users can run piserver without sudo privileges?

[maxnet]

Can you tell me please. how users can run piserver without sudo privileges?

Not possible in a secure manner. (In sudo configuration you do can specify that users are only allowed to start piserver with "sudo" and no other commands. But they will effectively still have root access then, through the chroot shell button in Piserver. Chroot does not provide any real protection)

You will need to create a webinterface or other abstraction layer if you want to allow users to perform only a limited number of privileged operations. Outside the scope of piserver.