[Feature] Add anti-brute force login mechanism to the web version

[PunkFleet]

I have searched the existing feature requests, both open and closed, to make sure this is not a duplicate request.

• Yes

The feature

I deployed it on my home NAS and used ddns+cloudflare+npm to enable external network access. However, there is a problem. When I added a zero trust access policy on cloudflare to protect my URL, the app became inaccessible.

Is there a way to separate web login from mobile API so that I can prevent exposure of the web login while still being able to use the mobile API normally?

Idea: Is it possible to use different subdomains for the console and API, similar to how Minio does it?

Platform

• Server
• Web
• Mobile

[bo0tzz]

#18861