External connection on site with HTTP Auth

[goranseric]

Hi guys.

I am having trouble in establishing a valid connection with our staging sites.

All of them are behind Basic HTTP Auth, and it looks like at the moment there is no way around it except removing it and using the recommend Application Passwords plugin.

Is this authorization type permanent solution? It could be an issue for any site that is behind Basic HTTP Auth for any reason.

[tlovett1]

There is a way to pass basic auth via the url - https://username:password@www.example.com

I know Chrome is moving away from that method. There is another filter you can use here - https://github.com/10up/distributor/blob/master/includes/classes/Authentication.php#L40

[goranseric]

Hi Taylor.
I am aware of what you have written above, but this is what I found to be a problem, https://github.com/10up/distributor/blob/master/includes/classes/Authentications/WordPressBasicAuth.php#L106.

HTTP Basic Auth header is sent by default and if I add correct one via the provided filter, I am getting limited connectivity and push unavailable notice as it overwrites the one containing admin account info from settings.

If I enter the connection URL in a format https://username:password@www.example.com I get "No connection found".
When HTTP Basic Auth info is added as admin/username combo the following notice is displayed:

Limited connection established. Authentication failed.
Push distribution unavailable.
Pull distribution limited to basic content, i.e. title and content body.

The only way I could get it working is after I have removed HTTP auth we had and added the Application Passwords.

[tlovett1]

Yep, you're right. We need a way to get around this. Adding this bug to our queue.

[dhanendran]

Does #368 solved this issue?

[jeffpaul]

@dhanendran perhaps.

@goranseric have you updated to Distributor 1.6 or later (1.6.2 is current latest) and tried out the new External Connections setup flow to see if that resolves your issue?