Currently when using both httpd options, accounts are shared.
With the following configuration
SET HTTPD UNIXSOCKET /run/monit.socket allow admin:admin_password set httpd port 2812 and allow ro_user:ro_user_password read-only
one is able to login via the web-interface as user admin.
It would be nice if the interfaces have separate accounts, so a read-only web-interface is possible with a concurrent working cli.