From 2757101442e5cbdd72c833c3ea0b0ce2b122b466 Mon Sep 17 00:00:00 2001 From: yp05327 <576951401@qq.com> Date: Wed, 26 Mar 2025 14:43:41 +0000 Subject: [PATCH] doc: ENABLE_PASSKEY_AUTHENTICATION (#187) fix: https://github.com/go-gitea/gitea/issues/34021 Reviewed-on: https://gitea.com/gitea/docs/pulls/187 Reviewed-by: wxiaoguang Reviewed-by: techknowlogick Co-authored-by: yp05327 <576951401@qq.com> Co-committed-by: yp05327 <576951401@qq.com> --- docs/administration/config-cheat-sheet.md | 4 +++- .../version-1.23/administration/config-cheat-sheet.md | 4 +++- 2 files changed, 6 insertions(+), 2 deletions(-) diff --git a/docs/administration/config-cheat-sheet.md b/docs/administration/config-cheat-sheet.md index 18395987..d2377091 100644 --- a/docs/administration/config-cheat-sheet.md +++ b/docs/administration/config-cheat-sheet.md @@ -677,9 +677,11 @@ And the following unique queues: BASIC and the user's password. Please note if you disable this you will not be able to access the tokens API endpoints using a password. Further, this only disables BASIC authentication using the password - not tokens or OAuth Basic. -- `ENABLE_PASSWORD_SIGNIN_FORM`: **true**: Show the password login form (for password-based login). +- `ENABLE_PASSWORD_SIGNIN_FORM`: **true**: Show the password login form (for password-based login), + otherwise, only show OAuth2 or passkey login methods if they are enabled. If you set it to false, maybe it also needs to set `ENABLE_BASIC_AUTHENTICATION` to false to completely disable password-based authentication. +- `ENABLE_PASSKEY_AUTHENTICATION`: **true**: Allow users to sign-in with a passkey - `ENABLE_REVERSE_PROXY_AUTHENTICATION`: **false**: Enable this to allow reverse proxy authentication for web requests - `ENABLE_REVERSE_PROXY_AUTHENTICATION_API`: **false**: Enable this to allow reverse proxy authentication for API requests, the reverse proxy is responsible for ensuring that no CSRF is possible. - `ENABLE_REVERSE_PROXY_AUTO_REGISTRATION`: **false**: Enable this to allow auto-registration diff --git a/versioned_docs/version-1.23/administration/config-cheat-sheet.md b/versioned_docs/version-1.23/administration/config-cheat-sheet.md index b631777c..90001aa1 100644 --- a/versioned_docs/version-1.23/administration/config-cheat-sheet.md +++ b/versioned_docs/version-1.23/administration/config-cheat-sheet.md @@ -664,9 +664,11 @@ And the following unique queues: BASIC and the user's password. Please note if you disable this you will not be able to access the tokens API endpoints using a password. Further, this only disables BASIC authentication using the password - not tokens or OAuth Basic. -- `ENABLE_PASSWORD_SIGNIN_FORM`: **true**: Show the password login form (for password-based login). +- `ENABLE_PASSWORD_SIGNIN_FORM`: **true**: Show the password login form (for password-based login), + otherwise, only show OAuth2 or passkey login methods if they are enabled. If you set it to false, maybe it also needs to set `ENABLE_BASIC_AUTHENTICATION` to false to completely disable password-based authentication. +- `ENABLE_PASSKEY_AUTHENTICATION`: **true**: Allow users to sign-in with a passkey - `ENABLE_REVERSE_PROXY_AUTHENTICATION`: **false**: Enable this to allow reverse proxy authentication for web requests - `ENABLE_REVERSE_PROXY_AUTHENTICATION_API`: **false**: Enable this to allow reverse proxy authentication for API requests, the reverse proxy is responsible for ensuring that no CSRF is possible. - `ENABLE_REVERSE_PROXY_AUTO_REGISTRATION`: **false**: Enable this to allow auto-registration