dohertj2/mxaccessgw
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

feat(dashboard): add DisableLogin + AutoLoginUser options (default off)

Browse Source
This commit is contained in:
Joseph Doherty
2026-06-16 08:11:10 -04:00
parent a894717319
commit 073252d7a6
2 changed files with 29 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/ZB.MOM.WW.MxGateway.Server/Configuration/DashboardOptions.cs
+17
View File
@@ -8,6 +8,23 @@ public sealed class DashboardOptions
/// <summary>Gets whether anonymous localhost access to dashboard is allowed.</summary> /// <summary>Gets whether anonymous localhost access to dashboard is allowed.</summary>
public bool AllowAnonymousLocalhost { get; init; } = true; public bool AllowAnonymousLocalhost { get; init; } = true;
/// <summary>
/// DEV/TEST ONLY. When true, the dashboard bypasses the login form entirely and
/// auto-authenticates EVERY request as <see cref="AutoLoginUser"/> holding both
/// dashboard roles (Administrator + Viewer). No cookie, no LDAP bind. Default false.
/// Unlike <see cref="AllowAnonymousLocalhost"/> (which only succeeds the authorization
/// requirement without authenticating), this mints a real principal, so the UI behaves
/// as a signed-in admin and applies to all clients (not just loopback). Never enable in
/// production. See docs/plans/2026-06-16-dashboard-disable-login-design.md.
/// </summary>
public bool DisableLogin { get; init; }
/// <summary>
/// Username minted for the auto-login principal when <see cref="DisableLogin"/> is true.
/// Null/blank falls back to the GLAuth Administrator test user <c>multi-role</c>.
/// </summary>
public string? AutoLoginUser { get; init; }
/// <summary> /// <summary>
/// When true (default), the dashboard auth cookie is restricted to HTTPS /// When true (default), the dashboard auth cookie is restricted to HTTPS
/// requests via <see cref="Microsoft.AspNetCore.Http.CookieSecurePolicy.Always"/>. /// requests via <see cref="Microsoft.AspNetCore.Http.CookieSecurePolicy.Always"/>.
src/ZB.MOM.WW.MxGateway.Tests/Configuration/GatewayOptionsTests.cs
+12
View File
@@ -121,6 +121,18 @@ public sealed class GatewayOptionsTests
StringComparison.Ordinal); StringComparison.Ordinal);
} }
[Fact]
public void DashboardOptions_DisableLogin_DefaultsToFalse()
{
Assert.False(new DashboardOptions().DisableLogin);
}
[Fact]
public void DashboardOptions_AutoLoginUser_DefaultsToNull()
{
Assert.Null(new DashboardOptions().AutoLoginUser);
}
private static GatewayOptions BindOptions(IReadOnlyDictionary<string, string?> configurationValues) private static GatewayOptions BindOptions(IReadOnlyDictionary<string, string?> configurationValues)
{ {
using ServiceProvider services = BuildServices(configurationValues); using ServiceProvider services = BuildServices(configurationValues);