search

tobychui / zoraxy

A general purpose HTTP reverse proxy and forwarding tool. Now written in Go!
https://zoraxy.arozos.com
GNU Affero General Public License v3.0
2.72k stars 163 forks source link

[ENHANCEMENTS] Allow bypass of Basic Auth for specified subnets #263

Open Sprooty opened 2 months ago

Sprooty commented 2 months ago

Is your feature request related to a problem? Please describe. I run services at home that i wish to also access externally, basic auth is a great option for this, however i have seen other similar apps that allow bypass of basic auth for specified subnets, eg 192.168.0/23 or 10.0.0./23

Describe the solution you'd like In basic auth config, allow to specify subnets that will bypass basic auth

Describe alternatives you've considered There is no workaround currently in Zoraxy

Additional context

FirefoxNL commented 2 weeks ago

+1. This could potentially be quite easy to implement with an option of adding an access control list to the basic auth option or, as in NPM, have the option to "satisfy any" so either the access control list OR the basic auth.

tobychui commented 2 weeks ago

@FirefoxNL Thanks for the input. For basic auth, I kinda want to keep it simple (as it is mostly for legacy browsers / embedded machines).

There is an up-coming Zoraxy SSO + oAuth feature which I guess might be more interesting for these types of uses cases. Though, I will still keep this here just in case someone want to pick it up and create a PR 👍🏻