8x48/homepage
1
0
Fork 0
mirror of https://github.com/gethomepage/homepage.git synced 2026-01-16 06:12:08 +08:00
Code Issues Actions 4 Packages Projects Releases Wiki Activity

Clarify security recommendations in documentation
Some checks failed
Docker CI / Linting Checks (push) Waiting to run
Details
Docker CI / Docker Build & Push (push) Blocked by required conditions
Details
Crowdin Action / Crowdin Sync (push) Has been cancelled
Details

Browse Source
This commit is contained in:
shamoon
2026-01-14 19:04:28 -08:00
parent a2697bfec0
commit f9d920a8fb
2 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
README.md
View File

@@ -68,7 +68,7 @@ For configuration options, examples and more, [please check out the homepage doc
## Security Notice 🔒
Please note that when using features such as widgets, Homepage can access personal information (for example from your home automation system) and Homepage currently does not (and is not planned to) include any authentication layer itself. Thus, we recommend homepage be deployed behind a reverse proxy including authentication, SSL etc, and / or behind a VPN.
Please note that when using features such as widgets, Homepage can access personal information (for example from your home automation system) and Homepage currently does not (and is not planned to) include any authentication layer itself. If Homepage is reachable from any untrusted network, it **must** sit behind a reverse proxy (and/or VPN) that enforces authentication, TLS, and strictly validates Host headers. The built-in host check in Homepage is a best-effort guard and should not be treated as security when exposed publicly.
## With Docker