How does copyparty interact with basic auth? #158
-
|
If I setup basic auth on nginx, is there a way for basic auth to log in a user, so the user doesnt have to log in twice? I know you can do this with authelia, but Id prefer not to have to set that up just for one service. |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 3 replies
-
|
if the username is alternatively, if you are absolutely sure that the only way to access the copyparty instance is through nginx, and nginx will definitely always verify the basic-auth before letting people through, and you'd prefer to not have to specify the same password twice, then you could add the user to the copyparty config with the username as the password, so |
Beta Was this translation helpful? Give feedback.
-
|
Wait, it doesnt care about the username? What happens if 2 users happen to have the same password? |
Beta Was this translation helpful? Give feedback.
-
|
it'll crash on startup with a warning saying it's an unsupported configuration 😁👍 |
Beta Was this translation helpful? Give feedback.
-
|
Thanks for the info. Prob want to add something along these lines to the README under auth. |
Beta Was this translation helpful? Give feedback.
if the username is
fooand the password isbar, then copyparty should accept a basic-auth which is eitherbarorx:baror evenbar:x(notice it doesn't care about the username) -- so the safest approach is to add the users to the copyparty config with the same username+password combination, and it should just work -- assuming you let copyparty see the basic-auth header (you don't strip the basic-auth header from the request).alternatively, if you are absolutely sure that the only way to access the copyparty instance is through nginx, and nginx will definitely always verify the basic-auth before letting people through, and you'd prefer to not have to specify the same password twice, then …