#0000 - Remove basic auth for MobSF

Removed the basic authentication configuration from the `docker-compose.yml` and the corresponding section in the `README.md`. Updated the README to mention the default super admin username and password.

.env.dist

@@ -1,5 +1,2 @@
 # Fully Qualified Domain Name for MobSF
 MOBSF_FQDN='example.com'
-
-# Basic Authentication credentials for MobSF in format USERNAME:PASSWORD
-MOBSF_BASIC_AUTH='USERNAME:PASSWORD'

README.md

@@ -36,8 +36,6 @@ cp .env.dist .env
 
 3. Customize the `.env` file as necessary for your environment.
 
-**Note**: You **must** define a basic authentication in `MOBSF_BASIC_AUTH` to protect your instance of MobSF.
-
 ## Usage
 
 Start the MobSF service with Docker Compose:
@@ -48,6 +46,8 @@ docker compose up -d
 
 Access MobSF by navigating to `https://<MOBSF_FQDN>` in your web browser. You will need to authenticate using the basic auth setup in your `.env` file.
 
+**NOTE**: by default, super admin username/password is: mobsf/mobsf
+
 ## Post-launch
 
 MobSF uses a fixed UID for the files persisted. To have the volume approach work, you must change the ownership of the data inside the volume as follows:

docker-compose.yml

@@ -16,9 +16,7 @@ services:
       - "traefik.http.routers.mobsf.rule=Host(`${MOBSF_FQDN}`)"
       - "traefik.http.routers.mobsf.entrypoints=websecure"
       - "traefik.http.routers.mobsf.tls.certresolver=myresolver"
-      - "traefik.http.routers.mobsf.middlewares=mobsf-auth"
       - "traefik.http.services.mobsf.loadbalancer.server.port=8000"
-      - "traefik.http.middlewares.mobsf-auth.basicauth.users=${MOBSF_BASIC_AUTH}"
     environment:
       USE_HOME: /MobSF
     volumes: