Support for HTTP Basic Authentication

[serasihay]

Please, consider adding support for HTTP Basic Auth (RFC2617) protected services.

I'm selfhosting a Tiny Tiny RSS service with HTTP Basic Auth; it would be great if FeedMe could detect a "WWW-Authenticate" response header (or have an initial configuration setting in order to be able to send an initial "Authorization" header), to allow entering credentials and accessing such HTTP Basic Auth protected services.

Thanks.

[seazon]

@serasihay Actually for TTRSS, FeedMe sets Authorization with value Basic xxx when call auth API, but user need input user name and password instead of base64-user-pass, FeedMe do the encode work.

[serasihay]

@seazon But then this assumes using the same username/password both for HTTP Basic Auth and TT-RSS login, which is not usually the case, in my opinion.

What I would expect is either an optional additional section in the tt-rss configuration form to fill in the Basic Auth credentials, or a prompt asking for the Basic Auth credentials when a "WWW-Authenticate" response header is received.

[serasihay]

Hi @seazon , I'm still very interested in this feature.

Having read again you previous answer, I tried to fill the "Host" field for the "TT-RSS" login form shown in the initial screen with the required username and password for the Basic Auth login using the following pattern:

https://username:[email protected]/tt-rss

But it did not work, FeedMe displayed an "Auth failed" message.

Please, consider again adding proper support for a case like this.

If that helps, you have an example of what I'm asking in the following "extension", available for an old app but that still works.
Here's the form it presents:

Here's the source code:
https://github.com/noinnion/newsplus/blob/master/extensions/TtRssExtension/src/com/noinnion/android/newsplus/extension/ttrss/LoginActivity.java

Edit:
Here's the relevant source code from the official tt-rss Android app. I guess it's a more up to date, modern, reference.
https://git.tt-rss.org/fox/tt-rss-android.git/tree/org.fox.ttrss/src/main/java/org/fox/ttrss/ApiCommon.java#n101

[serasihay]

Hi @seazon , did you find the time to look into this?

[seazon]

Thank you for your persistence. I will check it these days.

[seazon]

@serasihay can you share your server and provide me an account via email to help test?

[serasihay]

@seazon Sorry, I'm not sharing my server. You can test basic http authentication (among others) in several public portals, though; like this one:

https://authenticationtest.com/HTTPAuth/
(username: user, password: pass)

[seazon]

@serasihay please email to me [email protected], I will send you the test build.

[serasihay]

Thank you @seazon . Test build received and tested.

The new auth basic capability is working just fine.

I appreciate the time and effort you put into this. :-)

[seazon]

@serasihay Great! I will add it in next version.

[seazon]

please try 4.3.2