Allow host deletion without login prompt
-
I believe this is a feature request and not a bug report - on the recent builds, you are required to authenticate when deleting a host through the web UI. I’d prefer this be an option so that I can disable the requirement and return to the old style where no actions in the UI required re-auth.
-
I second this. Deleting a single host IMO is trivial. There is no real security threat if someone hijacks my session and starts deleting hosts one at a time. They will just report back in via fog client as pending.
-
@MRCUR said in Allow host deletion without login prompt:
return to the old style where no actions in the UI required re-auth.
While it would be possible to remove some of the login prompts (whether or not we decide to do so is another matter), certain things will still have them no matter what. One such thing is the database export, that must, and will, require re-authentication to do so. Too much sensitive information is stored in your database to not re-prompt for export.
-
Adding on this - there is no prompt for creating or deploying a snapin - there should be if the goal is security. But for deleting a host - I feel that unnecessary.
Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG!
Daily Clean Installation Results:
https://fogtesting.fogproject.us/
FOG Reporting:
https://fog-external-reporting-results.fogproject.us/ -
@Wayne-Workman This isn’t to make a person’s like harder or easier. It’s because commonalities between pages make things simpler to code for the future.
Make exceptions is not overly difficult but starts to make code obfuscated and more difficult to track errors. You’ll notice ALL pages require reauth on delete (Images, Snapins, Hosts, Printers, Locations, etc…) This is because there’s a common controller for all of them.
Please help us build the FOG community with everyone involved. It's not just about coding - way more we need people to test things, update documentation and most importantly work on uniting the community of people enjoying and working on FOG! Get in contact with me (chat bubble in the top right corner) if you want to join in.
Web GUI issue? Please check apache error (debian/ubuntu: /var/log/apache2/error.log, centos/fedora/rhel: /var/log/httpd/error_log) and php-fpm log (/var/log/php*-fpm.log)
Please support FOG if you like it: https://wiki.fogproject.org/wiki/index.php/Support_FOG
-
@Tom-Elliott Okay, that makes sense then. I’d be in favor of removing it, but I’m also in favor or reducing complexity if it helps troubleshooting and your sanity for working on the code.
