Support Trusted Header Authentication
rfvgyhn opened this issue · comments
I host wakapi behind a reverse proxy that uses Authelia for SSO. It would be great if wakapi supported trusted headers to automatically login.
An example project that supports this is Navidrome. When it sees the header Remote-User
and the proxy's IP is whitelisted, the user is auto logged in and if the user doesn't exist, it is automatically created.
https://www.authelia.com/integration/trusted-header-sso/introduction/
https://www.navidrome.org/docs/usage/security/#reverse-proxy-authentication
navidrome/navidrome#1152
Very interesting concept! I'll add support for this type of authentication to Wakapi. But I will refrain from implementing automated user creation, if you don't mind - it would require too many changes for little added value imo.