We always used Vikunja with a webserver auth_basic (since at least 0.19) but with 0.24.1 it does not work anymore.
It looks like a request to manifest.webmanifest
is done without username/password and then it returns 401
Here is a screenshot from chrome inspector(network):
Very interesting how you got this working at all, since basic auth uses the same header which Vikunja uses for its own JWT-based authorization and thus this should not work at all.
Could this be related to the merge of backend and frontend?
Just guessing, I might be completely wrong here but: @stonebridge8 in the previous versions, I assume you had basic auth in front of the frontend (for whatever reason) and communication between frontend and backend was using the built-in JWT based auth?
If so, you might be able to implement that again, but you’d need to selectively enable basic_auth based on the path that is being requested.
I get it working by excluding manifest.webmanifest from auth_basic in a way like:
location ^~ /manifest.webmanifest {
auth_basic off;
}