feat: add option to disable authentication

Author: Vojtěch Frič

README.md

@@ -90,6 +90,7 @@ Once done, just go to <your host> and login as "admin" with <any password>.
 | HOST               | Url to OnLogs host from protocol to domain name. |                    | if `AGENT=true`
 | ONLOGS_TOKEN       | Token that will use an agent to authorize and connect to HOST | Generates with OnLogs interface   | if `AGENT=true`
 | MAX_LOGS_SIZE | Maximum allowed total logs size before cleanup triggers. Accepts human-readable formats like 5GB, 500MB, 1.5GB etc. When exceeded, 10% of logs (by count) will be removed proportionally across containers starting from oldest | 10GB | -
+| DISABLE_AUTH | Option to completely disable built in authentication in the application. When this option is set to `true` the app will behave like if the Administrator is logged in. The option to manage users will be removed. | false | -
 
 ### Docket socket URL
 By default the app will connect using the raw unix socket. But this can be overriden via the ENV variable `DOCKER_HOST`. That way you can specify fully qualified URL to the socket or URL of an docker socket proxy.

application/backend/.env example

@@ -2,6 +2,6 @@ PASSWORD=fsadfsadfad
 ENV_NAME = local
 PORT=2874
 ONLOGS_PATH_PREFIX=''
-
+DISABLE_AUTH=false
 # HOST=onlogs.coposter.me
 # AGENT=true

application/backend/app/routes/routes.go

@@ -43,6 +43,10 @@ func enableCors(w *http.ResponseWriter) {
 }
 
 func verifyAdminUser(w *http.ResponseWriter, req *http.Request) bool {
+	if os.Getenv("DISABLE_AUTH") == "true" {
+		return true
+	}
+
 	username, err := util.GetUserFromJWT(*req)
 	if username != os.Getenv("ADMIN_USERNAME") {
 		(*w).WriteHeader(http.StatusForbidden)
@@ -59,6 +63,10 @@ func verifyAdminUser(w *http.ResponseWriter, req *http.Request) bool {
 }
 
 func verifyUser(w *http.ResponseWriter, req *http.Request) bool {
+	if os.Getenv("DISABLE_AUTH") == "true" {
+		return true
+	}
+
 	_, err := util.GetUserFromJWT(*req)
 	if err != nil {
 		(*w).WriteHeader(http.StatusUnauthorized)
@@ -91,19 +99,30 @@ func (h *RouteController)Frontend(w http.ResponseWriter, req *http.Request) {
 	if err != nil {
 		dir = http.Dir("dist")
 		file, err = dir.Open("index.html")
+		fileName = "index.html"
 	}
 	if err != nil {
 		return
 	}
 	defer file.Close()
 
+	stat, _ := file.Stat()
+	content, _ := io.ReadAll(file)
+
+	if fileName == "index.html" {
+		var disableAuth []byte
+		if os.Getenv("DISABLE_AUTH") == "true" {
+			disableAuth = []byte("true")
+		} else {
+			disableAuth = []byte("false")
+		}
+
+		content = bytes.Replace(content, []byte("$DISABLE_AUTH$"), disableAuth, 1)
+	}
+
 	w.Header().Set("Cache-Control", "no-store")
 	w.Header().Set("Content-Type", mime.TypeByExtension(filepath.Ext(fileName)))
-
-	stat, _ := file.Stat()
-	content := make([]byte, stat.Size())
-	io.ReadFull(file, content)
-	http.ServeContent(w, req, requestedPath, stat.ModTime(), bytes.NewReader(content))
+	http.ServeContent(w, req, fileName, stat.ModTime(), bytes.NewReader(content))
 }
 
 func (h *RouteController)CheckCookie(w http.ResponseWriter, req *http.Request) {

application/frontend/index.html

@@ -26,6 +26,10 @@
 
     <meta name="viewport" content="width=device-width, initial-scale=1.0" />
     <title>OnLogs</title>
+
+    <script>
+      window.DISABLE_AUTH=$DISABLE_AUTH$ ?? false;
+    </script>
   </head>
   <body>
     <div id="app"></div>

application/frontend/src/lib/ClientPanel/ClientPanel.svelte

@@ -14,6 +14,8 @@
   let localTheme = "";
   let api = new fetchApi();
 
+  const showUserMenu = window.DISABLE_AUTH ?? true;
+
   //store management
   function toggleUserMenu() {
     userMenuOpen.update((v) => !v);
@@ -69,6 +71,7 @@
           ($activeMenuOption === 'view' && 'active')}"
       />
     </li>
+    {#if showUserMenu}
     <li
       on:click={toggleUserMenu}
       class={$activeMenuOption === "users" && "active"}
@@ -78,6 +81,7 @@
         class="higlightedOverlay {$activeMenuOption === 'users' && 'active'}"
       />
     </li>
+    {/if}
 
     <!-- <li class={$activeMenuOption === "wheel" && "active"}>
       <i class="log log-Wheel" />