Implement basic auth

[ablyes]

Hi all, It's not an issue, it's more about a suggestion : implement basic auth.
This would help me to use authentik with flatnotes, by passing login and password.
Thank you.

[dullage]

Hey @ablyes 👋.

With Authentik, does the underlying app need authentication? Or could you just disable authentication for your flatnotes instance?

[ablyes]

I'll save notes related to work. This should not be accessible to anybody on the local network.
I think the basic auth would be the simplest way to have a secure endpoint on both lan and wan.

[danbarbarito]

@ablyes If you didn't already know, flatnotes already supports authentication. Based on what you said, it sounds like you might just want to use the "Password" auth option (https://github.com/dullage/flatnotes/wiki#what-types-of-authentication-are-supported).

[ablyes]

not exactly what i want.
In fact, the password option provides a kind of form, which is not following the basic auth authentication.
This last one is asking for a login/password via a browser window.
This allows authentik to fill the info to that window browser.

Authentik can't fill a form.

[dullage]

@ablyes - Is Authentik not able to secure sites that don't have any authentication? I'm not too familiar with Authentik but I thought this was one of the benefits.

[ablyes]

Authentik can’t catch lan access.
On local you can reach flatnotes without passing through authentik.
That means the following:

• flatnotes with password :
  Authentik not ok because you need to login once again with native flatnotes credentials, access with lan ok.
• flatnotes without password : access with authetik ok, from lan no

[dullage]

If you're running Authentik in a Docker container then I suspect you could set up the networking so that flatnotes is only accessible to Authentik.