{ "label": "Auth configuration", "description": "Authentication and session-related settings including cookie and rate limit options.", "enabled": { "label": "Enable authentication", "description": "Enable native authentication for the Frigate UI." }, "reset_admin_password": { "label": "Reset the admin password on startup", "description": "If true, reset the admin user's password on startup and print the new password in logs." }, "cookie_name": { "label": "Name for jwt token cookie", "description": "Name of the cookie used to store the JWT token for native authentication." }, "cookie_secure": { "label": "Set secure flag on cookie", "description": "Set the secure flag on the auth cookie; should be true when using TLS." }, "session_length": { "label": "Session length for jwt session tokens", "description": "Session duration in seconds for JWT-based sessions." }, "refresh_time": { "label": "Refresh the session if it is going to expire in this many seconds", "description": "When a session is within this many seconds of expiring, refresh it back to full length." }, "failed_login_rate_limit": { "label": "Rate limits for failed login attempts", "description": "Rate limiting rules for failed login attempts to reduce brute-force attacks." }, "trusted_proxies": { "label": "Trusted proxies for determining IP address to rate limit", "description": "List of trusted proxy IPs used when determining client IP for rate limiting." }, "hash_iterations": { "label": "Password hash iterations", "description": "Number of PBKDF2-SHA256 iterations to use when hashing user passwords." }, "roles": { "label": "Role to camera mappings. Empty list grants access to all cameras", "description": "Map roles to camera lists. An empty list grants access to all cameras for the role." }, "admin_first_time_login": { "label": "Internal field to expose first-time admin login flag to the UI", "description": "When true the UI may show a help link on the login page informing users how to sign in after an admin password reset. " } }