Login form
auth:
type: LOGIN_FORM
login-form-credentials: susan:susan_password,dave:dave_passwordAUTH_TYPE=LOGIN_FORM
AUTH_LOGIN_FORM_CREDENTIALS=susan:susan_password,dave:dave_passwordLast updated
This is the simplest form of authentication provided by ODD Platform.
User credentials are set by defining the auth.login-form-credentials property in the format username1:password1,username2:password2,.... All users authenticated through this method receive ADMIN privileges in the platform.
The shipped configuration contains the default credentials admin:admin,root:root. If you enable LOGIN_FORM authentication without overriding auth.login-form-credentials, the platform will accept logins from admin/admin and root/root — and both accounts have full ADMIN privileges. Change these defaults before any non-local deployment.
To override, either set auth.login-form-credentials explicitly (YAML or the AUTH_LOGIN_FORM_CREDENTIALS environment variable, shown below) or switch to OAUTH2 or LDAP authentication. For any production deployment, prefer OAUTH2 or LDAP — LOGIN_FORM stores credentials in plain text in the platform configuration and does not support rotation, session revocation, or MFA.
auth:
type: LOGIN_FORM
login-form-credentials: susan:susan_password,dave:dave_passwordAUTH_TYPE=LOGIN_FORM
AUTH_LOGIN_FORM_CREDENTIALS=susan:susan_password,dave:dave_passwordLast updated