-
-
Notifications
You must be signed in to change notification settings - Fork 65
Add auth to the local miner-ui API #4858
Copy link
Copy link
Open
Labels
gittensor:featureGittensor-scored feature linked to a feature issue — scores a 0.25x multiplier.Gittensor-scored feature linked to a feature issue — scores a 0.25x multiplier.help wantedExtra attention is neededExtra attention is needed
Description
Metadata
Metadata
Assignees
Labels
gittensor:featureGittensor-scored feature linked to a feature issue — scores a 0.25x multiplier.Gittensor-scored feature linked to a feature issue — scores a 0.25x multiplier.help wantedExtra attention is neededExtra attention is needed
Problem: The local miner-ui API currently relies on undocumented, implicit loopback-only trust — there's no actual authentication, and this becomes more important once the UI can take real actions (above).
Area: AMS / Miner UI
Proposal: Add a minimal auth mechanism (e.g. a locally-generated token) to the miner-ui's API, documented clearly.
Deliverables:
Acceptance criteria:
Scope note: this auth mechanism is for the local, loopback-only miner-ui API only. It must not touch the review gate's own authentication/bypass-resistance mechanisms or any multi-tenant security architecture, which stay maintainer-only.