When starting the server, the typical use case will not involve
responding to interactive prompts. This change better reflects the
expectations of a user given that fact.
---------
Co-authored-by: Julio <1953782+julio-lopez@users.noreply.github.com>
The previous wording conveyed that eliding `--insecure` flag was required
by the nginx (config) and not kopia itself.
The new wording expands and explains why the flag is needed. This helps
when setting up kopia behind other reverse proxies, such as traefik.
See https://kopia.discourse.group/t/cant-connect-to-insecure-repository-server/871/4
for additional context.
* Improvements related to spelling and structure
* Moved kopia 0.8 section to the bottom
* Update site/content/docs/Repository Server/_index.md
---------
Co-authored-by: lupusA <lupuapps@gmail.com>
Co-authored-by: Julio López <1953782+julio-lopez@users.noreply.github.com>
- Added server control credentials to `kopia server start` example
- Reformatted `kopia server start` to avoid excessive horizontal scrolling
- Moved pre-v0.8 information to quoted notes to reduce confusion
* nit: replaced harcoded string constants with named constants
* acl: added management of ACL entries
* auth: implemented DefaultAuthorizer which uses ACLs if any entries are found in the system and falls back to LegacyAuthorizer if not
* cli: switch to DefaultAuthorizer when starting server
* cli: added ACL management
* server: refactored authenticator + added refresh
Authenticator is now an interface which also supports Refresh.
* authz: refactored authorizer to be an interface + added Refresh()
* server: refresh authentication and authorizer
* e2e tests for ACLs
* server: handling of SIGHUP to refresh authn/authz caches
* server: reorganized flags to specify auth options:
- removed '--allow-repository-users' - it's always on
- one of --without-password, --server-password or --random-password
can be specified to specify password for the UI user
- htpasswd-file - can be specified to provide password for UI or remote
users
* cli: moved 'kopia user' to 'kopia server user'
* server: allow all UI actions if no authenticator is set
* acl: removed priority until we have a better understood use case for it
* acl: added validation of allowed labels when adding ACL entries
* site: added docs for ACLs
* Added draft release notes for 0.8
* Moved some content to 'advanced' section.
* Added conceptual documentation for actions, caching and logging.
* Updated site footer.
* cli: small tweaks to kopia server mode
* print SHA256 certficate thumbprint for auto-generated certs.
* client will accept both upper- and lowercase thumbprint values
* site: updated documentation for v0.6.0 release
Co-authored-by: Julio López <julio+gh@kasten.io>
