Netdata Community

Improve login process with email

Feature Requests Netdata Cloud Feature Requests
#1

Login to cloud dashboard with email sends a one-time login link. This is problematic for two reasons:

  • It’s terribly insecure. As emails are similar to postcards in the “good old physical world”, everyone with technical capabilities can listen in and therefore grab the link and get unsolicited access to my dashboard
  • It’s very inconvenient. Especially if I want to login from a device that doesn’t have access to email, I have to copy & paste the link to that device and then use it there to get started. That’s not fun at all.

The other options (login with Google or GitHub) is a no-go in out case as we don’t trust those companies.

Looks like you want to avoid dealing with passwords, I understand that. But the way it is now isn’t a solution either from my point of view.

#2

@zack it’s about logging in with email, not with any of the third party authentication providers.

It’s good to hear that you’re planning on more auth methods. As you’re looking into WebAuthn you may also want to look into SQRL (https://www.grc.com/sqrl/sqrl.htm)

1 Like
#3

We should look up on how to add support for WebAuthn so we can add second-factor authentication through OS.

#4

We intend to add more auth methods, like username/pwd and later - probably in a paid version - SSO for enterprises. The link expires the moment you use it, so it’s dangerous only if you don’t use it.

#5

Is the issue with using an external SSO provider, or specifically with Google and Github?

#6

New user here :slight_smile:
It’s been a frustration of mine … everyday (sometimes more than once a day) I have to login by asking for a password, waiting, opening, clicking … boring :stuck_out_tongue:

Give me a password please … pretty please :smiley:

2 Likes
#7

Thanks @TerminalAddict for the comment! Be certain that we have logged it!

#8

I started to use netdata yesterday evening. So far, so good, but the login process is really boring. I would prefer the good old fashioned login with password and/or 2FA and generator.

I understand, that you don’t want to store passwords. But this logon sucks.

  • I have my notebook on my knees, want to fix a problem quick. Need to login to the webmail to get the “sign in” Email. Wasting 3 Minutes.
  • Ohh, EMail server is offline for a reason. It’s 3AM and i should fix a problem by getting some data from the monitoring.

Cheers