The standard built-in authentication method which is enabled by default is username/password authentication against local user accounts. That means that user accounts and (hashed) passwords are stored in the Weavy database.
The standard built-in authentication method which is enabled by default is username/password authentication against local user accounts. That means that user accounts and (hashed) passwords are stored in the Weavy database.
Local users can only be created by an administrator in the Weavy user interface.
The following settings are required for Weavy to use authentication with local user accounts.
The Weavy website in IIS must be configured with the following settings:
Anonymous Authentication = Enabled
Forms Authentication = Disabled
Windows Authentication = Disabled
The web.config
file should have the following configuration:
<system.web>
<authentication mode="None" />
</system.web>
When Weavy is configured to use local user accounts it is possible to recover a lost password by clicking the "Recover password" link on the sign in page.
With the configuration setting weavy.forms-authentication=false
it is possible to completely disable the possibility to login with local user accounts.