Built-in Auth Module

The built-in authentication module is enabled by default, and its settings are pre-configured. However, you can disable the module, rename it, and choose the required password strength for user account passwords.

You can also allow people with specified email domains to sign up to CodeCanvas at the login page.

Disable, enable, and configure the built-in module

In the header navigation, select Administration, then in the sidebar menu, select Auth Modules.
Click Built-in to open the module settings.
To disable the module, switch the status to Inactive. Switch to Active to enable it back.
To change the module name and identifier key, edit the corresponding fields.
Allowed domains
Click Add domain to specify the email domains. Users with email addresses from these domains will be able to register themselves at the login page. Users with other email domains will not be able to sign up.

Set password strength

The password strength determines the complexity of user account passwords. CodeCanvas uses the zxcvbn library to estimate the password strength. The library distinguishes between five levels of password strength. By default, the password strength is set to Strong ('very unguessable' in the library terms) and it is not possible to change this setting.

To make it possible to select different password strength, a system administrator should update the CodeCanvas configuration via the Helm chart values. To do this, set the following parameter in the values.yaml file and apply the changes to your CodeCanvas installation:

            application:
              # ... other properties
              config:
                # ... other properties
                codecanvas:
                  # ... other properties
                  rd:
                    auth:
                      strongPassword: false
        

After the change is applied, the Password strength setting will appear in the built-in module settings.

Last modified: 03 January 2025