I think it would be nice to allow granted access to the admin page for multiple users on the network to log in and have access to granted features. Obviously I do not want to just give everyone an account, but having multiple admin accounts and maybe guest accounts with view only access to the stats only or something. Mainly I would like more admin users so I can add my roommate to the admin console so he can block specific things from his kids.
+1 for me.
I also would like to give "operators" access level to those users who just have to check the logs and the stats, while keeping admin pages (config, rules, lists, white/blacklists) only for admin users.
Thanks!
+1 for me as well . I was thinking that can we create and use local *nix user with limited privileges to achieve the objective of read-only data ?
+1 for me as well
+1 fer me as well, but I use it in a personal setting, and I would love to be able to easily keep track of who shuts off my pihole and when, I can look in the logs and trace back IP's and stuff, but user management would just make it easier.
I was thinking about this the other day as well, because of the V6 release.
Users can:
- View stats
- View logs
- Edit settings
Access levels could include:
- Full
When access level is "Full", user is shown identical interface to the admin. - Diagnostic
When access level is "Diagnostic", user can be shown (perhaps individually selectable): Dashboard, Query Log, Pi-hole Diagnosis, Tail Log Files, Search Lists - Custom (Simple)
When access level is "Custom (Simple)", users can be shown (or not) sections as shown on the left in the PiHole web interface. - Custom (Expert)
When acces level is "Custom (Expert)", users can be granted/denied access to every unique setting available, such as "dns.upstreams", "dns.revServers" as defined in pihole.toml.
When Custom (expert) is chosen, you could show the custom settings in a menu identical to the "All Settings" menu that is unlocked when you choose "Expert" mode.
Maybe add in the option to show / hide expert setting option per user.
These are just rough ideas, but it will allow people with different access levels to manage / gather info about pihole in larger networks. I have no idea whether this is feasible with the current code base.