The standard built-in authentication method which is enabled by default is username/password authentication against local user accounts. That means that user accounts and (hashed) passwords are stored in the Weavy database.

Local users can only be created by an administrator in the Weavy user interface.


The following settings are required for Weavy to use authentication with local user accounts.

Web server 

The Weavy website in IIS must be configured with the following settings:

Anonymous Authentication = Enabled
Forms Authentication = Disabled
Windows Authentication = Disabled


The web.config file should have the following configuration:


   <authentication mode="None" />


Password recovery 

When Weavy is configured to use local user accounts it is possible to recover a lost password by clicking the "Recover password" link on the sign in page.

Disabling login with local accounts 

With the configuration setting weavy.forms-authentication=false it is possible to completely disable the possibility to login with local user accounts.