github-starred/komodo
2
0
Fork 1
mirror of https://github.com/moghtech/komodo.git synced 2026-03-09 07:13:36 -05:00
Code Issues 258 Packages Projects Releases 10 Wiki Activity

[Feature] Improve Komodo to Periphery authentication #87

New Issue
Open
opened 2025-10-31 15:01:49 -05:00 by GiteaMirror · 2 comments
GiteaMirror commented 2025-10-31 15:01:49 -05:00
Owner
Copy Link

Originally created by @metril on GitHub (Oct 13, 2024).

Connections from Komodo to each Periphery should use unique authentication. Currently, the same passkey needs to be specified for each Periphery. If a Periphery host were to be hacked, the passkey will be compromised and thus require changing the passkey on each and every host. Additionally this puts other hosts at risk until the passkey can be changed.

The passkeys should be hashed via something like bcrypt. Additionally, consider implementing mutual TLS.

Originally created by @metril on GitHub (Oct 13, 2024). Connections from Komodo to each Periphery should use unique authentication. Currently, the same passkey needs to be specified for each Periphery. If a Periphery host were to be hacked, the passkey will be compromised and thus require changing the passkey on each and every host. Additionally this puts other hosts at risk until the passkey can be changed. The passkeys should be hashed via something like bcrypt. Additionally, consider implementing mutual TLS.
GiteaMirror added the enhancement label 2025-10-31 15:01:49 -05:00
GiteaMirror commented 2025-10-31 15:01:50 -05:00
Author
Owner
Copy Link

@wwwlicious commented on GitHub (Oct 25, 2024):

It would be a nicer UX imo if the "create server" flow generated a unique key that you then provide to the periphery.

I've used this flow in other server/agent stacks, often along with inverting where the url is set so each periphery has the server key and url and on first startup the agent handshakes/auths and registers with the server.

@wwwlicious commented on GitHub (Oct 25, 2024): It would be a nicer UX imo if the "create server" flow generated a unique key that you then provide to the periphery. I've used this flow in other server/agent stacks, often along with inverting where the url is set so each periphery has the server key and url and on first startup the agent handshakes/auths and registers with the server.
GiteaMirror commented 2025-10-31 15:01:50 -05:00
Author
Owner
Copy Link

@mbecker20 commented on GitHub (Oct 6, 2025):

https://github.com/moghtech/komodo/pull/889

@mbecker20 commented on GitHub (Oct 6, 2025): https://github.com/moghtech/komodo/pull/889
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
1.19.0
1.19.1
1.19.2
1.19.3
1.19.4
bug
documentation
done
enhancement
help wanted
info
pull-request
Mirrored from GitHub Pull Request
 question
security
seen 👀
setup
thinking 🤔
ui
No Label enhancement
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
GiteaMirror ninjasurge
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: github-starred/komodo#87
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?