Is there a way to login automatically?

[ysmood]

Typing user name and password every time is painful. I know you don't support ssh-key.
Maybe you can support a way to save user name and password in the browser, if the user really know what he is doing.

[paradoxxxzero]

Maybe http authentication could allow users to save their password.
As of now there is an hidden feature which makes all text in the url after # being typed in the terminal. You could use it to save the password in a bookmark if you really are crazy :)
http://myserver:57575/user/foo#bar if foo your user and bar your password.

[ysmood]

@paradoxxxzero Great work!

[oldgregg-zz]

There's some code in my SSL patch that would allow users to authenticate their user id through http client certificates. There'd be nothing to stop you from from treating them more like SSH keys, where the certificate is sufficient to log in.

I'd generally shy away from the automatic echoing of text into a session, as you could get into a bad situation where you allow people to execute code on your machine. Consider a link that looks like this: http://localhost:57575/user/youruser#date

This one is benign, only printing the date.

I understand you have the "origin" check in place now, but that sort of check doesn't help if the user accidentally clicks a link from within their butterfly instance.

[paradoxxxzero]

Agreed, This was a dangerous feature.