Ombi: Is it possible to disable Ombi local login and solely use Plex OAuth?

Use the custom CSS to hide the button

In case anyone else wants to do this, here's the CSS I ended up using after some Googling - just copy and paste this into Settings > Configuration > Customization > Custom CSS:
.form-signin:first-of-type { display: none; }

EDIT: This only works for v3, to apply a similar change to v4 refer to the below post https://github.com/tidusjar/Ombi/issues/2766#issuecomment-678567399

@tidusjar if you have any thoughts on a better solution than what I've come up with (I'm learning as I Google), please let me know.

Thanks!

@raman325 Thank you! This worked fantastically for me!

Use the custom CSS to hide the button

This is not by far a solution since the login mechanism still is present in the front end and also is accepted by the backend, so from a security stand-point this is useless.

Thanks this worked great! To address @abpostelnicu 's concern, for me this isn't about security but instead guiding users down the right path.

It would still be better if this path was treated as a first class citizen from a security standpoint but as long as you use good passwords for admin accounts, the damage a hacker could inflict is relatively low

When will this feature spill into V4?

It's already in the latest version of V4.

Regarding the security comments, please can someone explain how having a local login is a security risk? I'll happily go into detail of what security measures are used and provide articles explaining the algorithms that are used (Microsoft Identity framework)

For example a weak password or something generic, I know this can be put on the user but having this disabled is something nice to have. As long as you have more entry points the number of potential breaches increases.

On 19 Aug 2020, at 10:54, Jamie notifications@github.com wrote:


It's already in the latest version of V4.

Regarding the security comments, please can someone explain how having a local login is a security risk? I'll happily go into detail of what security measures are used and provide articles explaining the algorithms that are used (Microsoft Identity framework)

—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub, or unsubscribe.

It's already in the latest version of V4.

Regarding the security comments, please can someone explain how having a local login is a security risk? I'll happily go into detail of what security measures are used and provide articles explaining the algorithms that are used (Microsoft Identity framework)

Where do I disable local login and just have Plex Auth only on the login screen?

I think you can use a css for this.

On 19 Aug 2020, at 12:52, ECKoBASE notifications@github.com wrote:


It's already in the latest version of V4.

Regarding the security comments, please can someone explain how having a local login is a security risk? I'll happily go into detail of what security measures are used and provide articles explaining the algorithms that are used (Microsoft Identity framework)

Where do I disable local login and just have Plex Auth only on the login screen?

—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub, or unsubscribe.

I think you can use a css for this.
…
On 19 Aug 2020, at 12:52, ECKoBASE @.*> wrote:  It's already in the latest version of V4. Regarding the security comments, please can someone explain how having a local login is a security risk? I'll happily go into detail of what security measures are used and provide articles explaining the algorithms that are used (Microsoft Identity framework) Where do I disable local login and just have Plex Auth only on the login screen? — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub, or unsubscribe.

I tired using the same custom CSS from V3 but it doesn't seem to work with V4 atm

.login-buttons button:first-of-type { display: none; }

Above works for me on v4