Auth! (#11347)

* reload the window on 401

* backend apis for auth

* add login page

* re-enable web linter

* fix login page routing

* bypass csrf for internal auth endpoint

* disable healthcheck in devcontainer target

* include login page in vite build

* redirect to login page on 401

* implement config for users and settings

* implement JWT actual secret

* add brute force protection on login

* add support for redirecting from auth failures on api calls

* return location for redirect

* default cookie name should pass regex test

* set hash iterations to current OWASP recommendation

* move users to database instead of config

* config option to reset admin password on startup

* user management UI

* check for deleted user on refresh

* validate username and fixes

* remove password constraint

* cleanup

* fix user check on refresh

* web fixes

* implement auth via new external port

* use x-forwarded-for to rate limit login attempts by ip

* implement logout and profile

* fixes

* lint fixes

* add support for user passthru from upstream proxies

* add support for specifying a logout url

* add documentation

* Update docs/docs/configuration/authentication.md

Co-authored-by: Nicolas Mowen <nickmowen213@gmail.com>

* Update docs/docs/configuration/authentication.md

Co-authored-by: Nicolas Mowen <nickmowen213@gmail.com>

---------

Co-authored-by: Nicolas Mowen <nickmowen213@gmail.com>

web/vite.config.ts

@@ -1,9 +1,11 @@
 /// <reference types="vitest" />
-import path from "path";
+import path, { resolve } from "path";
 import { defineConfig } from "vite";
 import react from "@vitejs/plugin-react-swc";
 import monacoEditorPlugin from "vite-plugin-monaco-editor";
 
+const proxyHost = "localhost:5000";
+
 // https://vitejs.dev/config/
 export default defineConfig({
   define: {
@@ -12,29 +14,37 @@ export default defineConfig({
   server: {
     proxy: {
       "/api": {
-        target: "http://localhost:5000",
+        target: `http://${proxyHost}`,
         ws: true,
       },
       "/vod": {
-        target: "http://localhost:5000",
+        target: `http://${proxyHost}`,
       },
       "/clips": {
-        target: "http://localhost:5000",
+        target: `http://${proxyHost}`,
       },
       "/exports": {
-        target: "http://localhost:5000",
+        target: `http://${proxyHost}`,
       },
       "/ws": {
-        target: "ws://localhost:5000",
+        target: `ws://${proxyHost}`,
         ws: true,
       },
       "/live": {
-        target: "ws://localhost:5000",
+        target: `ws://${proxyHost}`,
         changeOrigin: true,
         ws: true,
       },
     },
   },
+  build: {
+    rollupOptions: {
+      input: {
+        main: resolve(__dirname, "index.html"),
+        login: resolve(__dirname, "login.html"),
+      },
+    },
+  },
   plugins: [
     react(),
     monacoEditorPlugin.default({