mirror of
https://github.com/Suwayomi/Tachidesk.git
synced 2026-01-22 03:32:38 +01:00
46e2ef125a
* Move API authorization to UserType We already verify the JWT there, so do the same with cookies. This makes the next steps easier * OPDS: Allow basic auth as fallback * Send 404 for any unmatched API request Redirecting to the UI is weird and can cause problems with the SIMPLE_LOGIN check (which ignores API requests) * Webview: Present Login page in SIMPLE_LOGIN mode For BASIC_AUTH, the dialog is always presented. With UI_LOGIN, we have a custom login dialog. Before, SIMPLE_LOGIN would just say "Unauthorized", as with all API endpoints. With the last commits, SIMPLE_LOGIN is checked by the endpoints, which Webview did not, so the page would load, but then the Websocket would error out, despite showing the login dialog. * Lint