Able to run multiple user accounts on docker web version

[Norbert-D]

Hi we really like the tool specially the web front-end, problem it seems that every one knowing the URL can access the emails with out any sign in. Problem is in this case when the domain is public available every one has access to the emails.
Is there a way to protect it? How could the docker be accessed to in this case it might be possible by changing the web server?
Feature Request:
• User Sign-In action before accessing the E-Mails
• Multiple user accounts on web solution
Is there a way we can help to contribute on the web version?
Norbert

[Fizzadar]

Hi @Norbert-D - firstly thank you for the kind words glad you enjoy Kanmail's take on the inbox.

Regarding access control I feel this is somewhat outside the scope of Kanmail itself and better implemented by something sitting in front of Kanmail. Kanmail itself is designed for single users only which would be a major change to implement.

As a basic example you could setup a separate Kanmail instance per user as required and put each behind an nginx proxy with basic authentication. This would provide separate instances/databases for each user and secure their individual Kanmail instances behind authentication.

Taking this further, it should be possible to use something like oauth2-proxy combined with a mapping between oauth user ID and Kanmail instance to provide a nicer login solution for users.