New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Auth credentials inside vlc addon nginx config #1873
Comments
The actual exposure is limited because the same nginx.conf file locks the port access to the supervisor's docker internal IP. But I agree that it's not good practice to hardcode this. Looks like the implementer is merely trying to lock VLC to the NGINX HA ingress mode for the VLC WebUI. This is clumsy, especially considering they're also generating a telnet secret elsewhere and using it for configuring "cvlc". All it would take is a base64 encoding of the secret prefixed by ":" and passing that value to be written to the resulting file. |
My stab at a fix is here: #1878 |
I'm wondering... Does this even matter? The vlc port is not exposed outside the container so the only way to access it is via the ingress port of the nginx which is "protected" behind the Home Assistant login... |
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. |
I think this is not a place to store credentials
addons/vlc/rootfs/usr/share/tempio/nginx.conf
Line 52 in 9fd88b5
The text was updated successfully, but these errors were encountered: