By default, your Node-RED App from the PLCnext Store is not secured - anyone who can access its IP address and port can access the editor and deploy changes.
This is only suitable if you are running on a trusted network.
To password protect the App follow the below steps:
- Connect your EPC to the internet. To do so, please follow this chapter: Connect EPC to internet.
- Install the "node-red-contrib-bcrypt" node using the palette manager.
- Import the Password_hash.json flow.
- Update the payload "Password Node" with the password.
- Deploy and start the flow. Inject the payload. The hashed value will be in the debug window.
- Update "/opt/plcnext/appshome/data/60002172000678/volumes/node-red/settings.js" with the hashed password above. Make sure to uncomment the setting:
- Reboot your device.
- Open up your Node-RED editor on your EPC again. You should now see a login required.
- You can logout by selecting the "preson" icon in the upper right window.