@girish yep, separate things indeed. That said, it'll be pretty useful for me, that's why I packaged it.
About being open, yeah, I don't like that as well, but I'll try to make it work either with basic auth as they suggest (insecure, but better than nothing), or with cloudron's own ProxyAuth, not sure if it would work.