Issue 13058: BasicAuth can now be disabled

diff --git a/src/Security/BasicAuth.php b/src/Security/BasicAuth.php
index 25da9b831818c3972ed206d3f305208df5e21db2..51da7a98ad472429d7f21b0d106b2129b8eb16f9 100644 (file)
--- a/src/Security/BasicAuth.php
+++ b/src/Security/BasicAuth.php
@@ -177,7 +177,7 @@ class BasicAuth
                        }
                        Logger::debug('Access denied', ['parameters' => $_SERVER]);
                        // Checking for commandline for the tests, we have to avoid to send a header
-                       if (php_sapi_name() !== 'cli') {
+                       if (DI::config()->get('system', 'basicauth') && (php_sapi_name() !== 'cli')) {
                                header('WWW-Authenticate: Basic realm="Friendica"');
                        }
                        throw new UnauthorizedException("This API requires login");

diff --git a/static/defaults.config.php b/static/defaults.config.php
index 3c4fdd762b3de0f0183838e74a742bd914f56fdc..7e699fad714ba3f6a06368bd3c6fcd6fc0156ce3 100644 (file)
--- a/static/defaults.config.php
+++ b/static/defaults.config.php
@@ -132,6 +132,10 @@ return [
                // The value has to start with the scheme and end with a "/"
                'avatar_cache_url' => '',
 
+               // basicauth (Boolean)
+               // Controls if login via BasicAuth is possible (default is true)
+               'basicauth' => true,
+
                // big_emojis (Boolean)
                // Display "Emoji Only" posts in big.
                'big_emojis' => false,