-
-
Notifications
You must be signed in to change notification settings - Fork 103
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add support for conneting to Navidrome behind a reverse proxy with basic authentication #16
Comments
I'm having a bit of trouble with the implementation on this. I set up basic auth on one of my navidrome instances, but it's returning a CORS error when trying to authenticate from the frontend. When testing with basic auth using a HTTP client (Insomnia), it works fine. Can you test on your side if you experience the same issues? You can use the build on #23 to test once it finishes. My error:
|
@e1pex I removed your comment since you may have accidently put your credentials in your comment. (From the logs).
|
No worries about the credentials in the previous post, they where not real ones. I did some more testing, when first adding the server with basic authentication checked I get this in the nginx log when clicking Add,
So it seems Feishin manages to log in once, the config is accepted and then Feishin is reloaded? But after the reload the server shows up as disconnected and any attempt to get it to reconnect by readding the password results in a 401 in the nginx logs
In the server config view the basic auth config is missing after the reload, could it be that the basic auth config is lost after the application reload? Is the CORS error you get from the reverse proxy or from Navidrome? Because I don't se that at all on my side. |
Hmm, if you're not getting an error on the login, then it might just be an issue on my side. I actually didn't pass-through the basic auth to all the API requests since I wanted to make sure that the login itself was working. Let me make some changes and then you can test again. |
I did a bit more testing but unfortunately it's probably not going to be feasible to get basic auth working. While browsing through your server works, the audio player that's being used (mpv) has trouble accessing the audio stream. There's a feature request that I saw regarding this but unfortunately not updates in some time. mpv-player/mpv#2689 |
Ok I see, do you want to close this for now then? I might do some digging to see if its possible to find a solution but I can't make a promise on timeline for it. |
Actually I was wrong, apparently basic auth can work with mpv, just that there's no dedicated parameters to insert them. It wasn't working when I was testing it previously... but trying the URL directly from the mpv commandline seems to work. |
As it's a bit of best practice to protect your Navidrome installation behind an reverse proxy, preferably with authentication when it's exposed to internet it would be great to have Feishin support basic authentication as an option to the native Navidrome authentication.
The text was updated successfully, but these errors were encountered: