-
Notifications
You must be signed in to change notification settings - Fork 307
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Please help me disable the Basic Auth #284
Comments
That flag is documented here, it is an Xvnc argument KasmVNC/unix/xserver/hw/vnc/Xvnc.man Line 435 in a89f71d
You are correct, it is not supported by our yaml config. https://www.kasmweb.com/kasmvnc/docs/latest/man/vncserver.html I have not tried this, but something like..
|
So I should just put vncserver -disableBasicAuth at the end of the yaml config file ? Thank you! |
It did not work. In fact it made the yaml file invalid and i had to redeploy the entire docker container. Could you please tell me where and how to add the line: vncserver -disableBasicAuth Thank you! |
I can tell you how to pass the auth to Kasm with Nginx Proxy Manager so you're not in the auth loop and maybe you can figure out the Apache equivalent. I was in the Auth Loop before I found an answer on NPM Github that someone posted. The part that I added in Custom locations is
The full nginx conf file is
This can now be added in iFrames in Ogranizr2 and Dashy. This also works with Kasm Workspaces if you want to add a local I also tried to disable Basic Auth at first but couldn't do it. I don't see websockets mentined in the nginx proxy file but those are enabled in GUI These Webtop containers come with Auth Disabled but I didn't try to see know how they do it. I just pass a Docker variable but what that does inside idk. |
But would it makes more sense to leave Auth locally to KasmVNC because of Linux users and KasmVNC users? I thought of that because of the reply you gave me for auto starting KasmVNC. Offloading Basic Auth to a http proxy server would only give you one username? idk if that last one is correct. |
You put the flag behind the command when you run the vncserver from the console by running |
There is a startup script that runs the vncserver command though and the default docker user has no write access to that script I can't edit it :( |
Are you running Docker? Or you install KasmVNC as a package like .deb in a VM? Isn't it your own Docker? If not can you send what you use? |
It is deployed in a docker container. I own the container, but i do not have root access in the container itself. I don't know the root password. This is the docker image i am using: https://hub.docker.com/r/kasmweb/chrome |
Yeah, I don't know how to pass that argument to docker run. It's probably impossible since they dont' support it. You would have to buid your own container from theirs and then edit the startup script. I found this somewhere, this is the argument passed https://github.com/linuxserver/docker-webtop this one runs without auth but you can't really install Chrome on it normally. You have to run The command works fine on my Laptop when I run |
Interesting. Thanks a lot for finding the call location in the startup script. I think I might have to find a way to build my own docker image. Thanks for all the help! |
I have a few KasmVNC Chrome containers running on a server all mapped to different ports 6901, 6902 etc. They all work fine but i need to have them embedded in an iframe. The Baisic Authentication has become an issue, since most browsers no longer allow passing login credentials in iframe URL. I tried configuring an Apache2 server as a proxy to inject the Authentication header, which does work, but then the container can not find websocky and initiate a web socket connection.
Anyway, I have decided to disable the basic authentication. I have read around and have not found a solution except "pass -disableBasicAuth to the vnc server". How do i do that ? The setting apparently isn't exposed in the kasm yaml config file. Please, just tell me how to disable the Basic Auth and make it persistent across server reboots.
Any help is much appreciated!
The text was updated successfully, but these errors were encountered: