Upcoming Release ✨
Added 2023-02-01 17:17:54 +0000 UTCWe are happy to report that we have successfully deployed two production copies of our (not yet officially released) edition for professional users. One of them is for a non-profit organization. A case study will follow once we have a little time.
What this means for you is that we now have a tested multi-user implementation that we plan to make available to PhotoPrism+ Members as soon as possible. There are still some customizations planned, such as adding a "family" role that can browse your library except for private pictures (and without permission to upload or delete files, or change library settings).
Please let us know if that's enough for you to get started! Also, it would be interesting to know if 2-factor authentication (2FA) support is important to you (not implemented yet, but planned). A web interface for managing users and multiple libraries will be provided at a later date, so that won't be available in the next release yet.
Comments
Thanks, you're welcome! Haven't you already supported us on GitHub Sponsors in the past?
PhotoPrism
2023-02-14 23:33:14 +0000 UTCHappy to hear that multiple user support is eminent and that you plan to implement a simple role-based access control model (i.e. admin vs family roles). As to 2FA, I suggest you *not* implement 2FA within PP and, instead, offload that to a reverse proxy running in front of PP. Let the proxy, such as Traefik or Nginx, implement the 2FA and include the authenticated user name in the HTTP headers forwarded to PhotoPrism. Then, implement an admin-defined table mapping that user name to a role (i.e. admin, family, guest, etc) to control what that user is permitted to do in PP. This probably means PP with 2FA *must* run in some kind of containerized environment (i.e. docker) but you'd still have your current single factor multi-user code for stand-alone deployments.
Ben McCann
2023-02-14 12:16:37 +0000 UTCNew member here... Thank you for all your work on PhotoPrism!
Ben McCann
2023-02-14 12:03:25 +0000 UTCOAuth 2.0 would be wonderful to integrate into Nextcloud for SSO, but any 2FA that uses MS or email would make me happy!
Nicholas Lekatsas
2023-02-13 12:39:48 +0000 UTCThank you very much for your feedback! Writing metadata back to the original files is on our to-do list and will be taken care of as soon as our resources allow :)
PhotoPrism
2023-02-08 14:33:49 +0000 UTCI have to admit, that photoprism has a limited use to me only because it is not possible to write EXIF tags back into files. That would be so much more important to me than 2FA is, because I am not going to upload my private pictures on a machine directly connected to the internet any time soon. I would rather feel more comfortable with photoprism as a service in my local or VPN network and unreachable from outside. The multi-user functionality would then make more sense to me as well if everybody could add tags to clearify who is on which photo and improve the quality of the collection by doing so.
Max Christian Pohle
2023-02-08 01:08:05 +0000 UTCI would definitely appreciate 2FA, ideally TOTP and U2F, but just TOTP is fine. It goes a long way towards helping reduce anxiety about exposing a privately hosted service to the public internet.
dysgregulated
2023-02-02 19:04:53 +0000 UTCI would favor bulk editing over 2FA as well.
Lol123456
2023-02-01 19:53:11 +0000 UTCHey you two, although I'm all in for security, I wouldn't consider 2FA a priority. Users with higher security requirements could easily offload this task to an authentication proxy. I'd rather see "Bulk Editing" and "Smart Folders" implemented. ;-)
Jan Kunzmann
2023-02-01 19:38:55 +0000 UTCHi, "family feature" is very nice, I love it. As a private user, I have no preference for 2FA...
Peter MARTIN
2023-02-01 19:06:19 +0000 UTCEmail would be an okay fallback as well, or a list of "alternate passwords" provided when 2fa is initiated.
Denny C
2023-02-01 18:46:28 +0000 UTCSMS seems difficult, since you need a provider that might charge for it? We would also need to add a field for the (verified) cell phone number to the user database.
PhotoPrism
2023-02-01 18:30:21 +0000 UTCAnything that would work with Google, MS or Authy. SMS as backup?
Charles Meyer
2023-02-01 17:40:29 +0000 UTCI use Authy for home assistant and enjoy it :) I haven't jumped into a full on self hosted solution yet.
Denny C
2023-02-01 17:37:58 +0000 UTCAre there any particular 2FA apps or standards you'd like to see supported?
PhotoPrism
2023-02-01 17:29:50 +0000 UTCHi there. Very much interested in this- both family and multi-user. 2FA with app or ubikey would be good too. Loving Photoprism and the new features sound excellent. Running it on Open Media Vault so hope changes get pushed there.
George W
2023-02-01 17:28:27 +0000 UTCWould love 2fa as an option as once I can have multiple users they will be accessing via web! Great news! Congratulations!
Denny C
2023-02-01 17:26:36 +0000 UTC
