[Feature Request] - Support Basic Auth

CappielloAntonio / tempo

An open source and lightweight music client for Subsonic, designed and built natively for Android.

GNU General Public License v3.0

867 stars 39 forks source link

[Feature Request] - Support Basic Auth #152

Open buergi opened 5 months ago

buergi commented 5 months ago

Summary

Support for login with basic auth seems to be missing.

Description

I configured my navidrome server to use basic auth and normal login both with the same credentials. I can successful login with DSub with the option "Authorization basic headers" enabled. Tempo always fails with code 401 (Unauthorized). Even when adding credentials to url (https://user:pass@host.com/path) it does not work.

Use Case

No real reason for dual authentification, I just prefer basic auth over login form.

Additional context

ralienpp commented 5 months ago

I'd like to have this feature as well. My rationale is that I want the server to be reachable over the Internet, but not directly exposed to various vulnerability scanners.

I configured HTTP basic authentication, so an external observer has no idea about what software runs at that URL.

jonas-resch commented 2 weeks ago

Hey, I implemented this feature (not merged yet). Could you please do a test with this APK? I tested it with a Navidrome instance behind a reverse proxy + HTTP basic auth and it worked for me.

For now, username and password need to be added to the server url (e.g. https://username:password@mysubsonic.com

Thanks!