Arkadiusz Fal aed78c13fb Send Piped auth token via query parameter instead of header ...

Piped accepts the session token via either an Authorization header or an
authToken query parameter (the /feed endpoint already uses the latter form).
Switch all token-bearing Piped endpoints to the query-parameter form so the
Authorization header is free for HTTP Basic Auth from a fronting reverse
proxy. Affects subscriptions, subscribe, unsubscribe, userPlaylists, and
userPlaylist (including its nextpage pagination loop).

2026-04-18 20:38:00 +02:00

37 KiB

Raw Blame History

View Raw