vrr/DockFlare
2
0
Fork 0
mirror of https://github.com/ChrispyBacon-dev/DockFlare.git synced 2026-04-28 11:49:34 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

IDP - feature

Browse source
This commit is contained in:
ChrispyBacon-dev 2025-10-06 07:53:58 +02:00
parent c946815838
commit 2f1225992f
44 changed files with 3831 additions and 264 deletions
Download patch file Download diff file Expand all files Collapse all files

2
dockflare/app/templates/docs/Multi-Server-Agent.md
View file

@ -134,7 +134,7 @@ networks:
### Recommended Hardening
1. Store agent keys in a vault/password manager; rotate regularly.
2. Enable Cloudflare Access in front of the master UI if you disable password login.
2. **Do not disable password login** - use OAuth/OIDC providers instead for single sign-on convenience without security risks. If you must disable password login, understand that this creates a Docker network security vulnerability where any container on the same network can bypass external authentication. See [Accessing the Web UI - Disabling Password Login](Accessing-the-Web-UI.md#disabling-password-login) for full security implications.
3. Use separate tunnels per agent for least-privilege isolation.
4. Monitor `Agents` page for heartbeat gaps offline nodes can be removed directly from the UI.