Support Header Authenication

[anthr76]

Is your feature request related to a problem? Please describe.
Logging into the app.

Describe the solution you'd like
Supporting reverse proxy fronted header authentication.

Additional context
My paperless instance is fronted by a authorization proxy that passes headers for authorization to paperless. For example reaching my instance would forward you to login then redirect you back to paperless providing paperless with it's username header.

Not sure if it's even possible but it would be great if the app can support this kind of login flow.

[bauerj]

Sorry, I don't quite understand what the app should do here. Should it open a website with your authentication page and acquire a cookie for API access?

[anthr76]

Should it open a website with your authentication page and acquire a cookie for API access?

Yes I think that would be best course of action.

[bauerj]

Thank you, that makes it a bit clearer. Still, I'm missing some information required to implement this:

• How would the app know there is such a proxy?
• Would the Paperless authentication still be used?
• Does the session need to be re-authenticated regularly or will it stay logged in indefinitely?

[2600box]

I think it is pretty common practice to use a reverse proxy with an x.509 certificate. If the app supported that, it would be great!

[krylovsk]

I'm using a secure access gateway in front of my paperless instance as well.
For making this work the app needs to support redirect to the access gateway's authentication page and store the cookie that the access gateway will set.

[deboy69]

Ill get on this band wagon for 2fa support for signon also. Currently using the iOS version.