servo: sftpgo: disable external access
This commit is contained in:
@@ -124,12 +124,13 @@ def getAuthResponse(ip: str, username: str, password: str) -> dict:
|
|||||||
return a sftpgo auth response either denying the user or approving them
|
return a sftpgo auth response either denying the user or approving them
|
||||||
with a set of permissions.
|
with a set of permissions.
|
||||||
"""
|
"""
|
||||||
if isTrustedCred(password) and username != "colin":
|
# TODO: allow external access only after i enable FTPS/ssl
|
||||||
# allow r/w access from those with a special token
|
# if isTrustedCred(password) and username != "colin":
|
||||||
return mkAuthOk(username, permissions = {
|
# # allow r/w access from those with a special token
|
||||||
"/": PERM_RW,
|
# return mkAuthOk(username, permissions = {
|
||||||
"/playground": PERM_RW,
|
# "/": PERM_RW,
|
||||||
})
|
# "/playground": PERM_RW,
|
||||||
|
# })
|
||||||
if isWireguard(ip):
|
if isWireguard(ip):
|
||||||
# allow any user from wireguard
|
# allow any user from wireguard
|
||||||
return mkAuthOk(username, permissions = {
|
return mkAuthOk(username, permissions = {
|
||||||
|
Reference in New Issue
Block a user