SoulSync

History

Broque Thomas 29089b35b3 Honor configured Tidal redirect_uri, drop request-host fallback Reported case (Foxxify): Tidal returned error 1002 ("Invalid redirect URI") on every authentication attempt for users accessing SoulSync from a network IP. User had ``http://127.0.0.1:8889/tidal/callback`` registered in his Tidal Developer Portal — matching the SoulSync UI default and docs. Root cause: the /auth/tidal route at web_server.py:5594-5598 had a "fallback: dynamically set based on request host" branch that fired when ``tidal.redirect_uri`` config was empty AND the request didn't come from localhost. That fallback overrode the TidalClient constructor's safe default (``http://127.0.0.1:<port>/tidal/callback``) with a uri built from request.host like ``http://192.168.x.x:8889/tidal/callback``. Tidal compares strings exactly so this never matched the documented portal registration and the user got 1002 before the consent screen even rendered. The trap is the SoulSync settings UI displays the default URI as the placeholder + "Current Redirect URI" display — but the placeholder never gets saved to config unless the user explicitly clicks Save. Most users who follow the docs (register the displayed default with Tidal, then click Authenticate) hit the empty-config path and the broken fallback. Fix: drop the request-host fallback. Empty config falls back to the constructor default that matches the documented portal registration. The existing post-auth swap-step in the instructions page below handles the Docker / remote-access case as designed: 1. SoulSync sends 127.0.0.1:8889 in the authorize URL → matches portal → Tidal accepts. 2. User authorizes → Tidal redirects browser to 127.0.0.1:8889 (which fails locally — nothing on user's machine listens there). 3. Instructions tell user to swap 127.0.0.1 with the host they're accessing SoulSync from. 4. Swapped URL hits the container's exposed callback port → auth completes. 8 regression tests in tests/test_tidal_auth_redirect_uri.py: - Configured redirect_uri sent verbatim (localhost / custom port / explicit network IP) - Empty config falls back to constructor default — NOT request.host (the actual reported scenario, with explicit assertion message warning if the bug returns) - Empty config + localhost access uses the same default (sanity) Full pytest 1635 passed; ruff clean.		3 weeks ago
..
artists	Lift enhance_artist_quality to core/artists/quality.py	4 weeks ago
automation	Surface handler-returned errors in automation last_error	4 weeks ago
discovery	Preserve artwork in quality scanner wishlist handoff	4 weeks ago
downloads	Rename wishlist lifecycle helper	4 weeks ago
imports	Honor lossy_copy.delete_original after successful conversion	3 weeks ago
library	Lift _execute_retag to core/library/retag.py	4 weeks ago
metadata	Move image URL normalization into metadata helpers	3 weeks ago
playlists	Lift _prepare_stream_task + playlist_explorer_build_tree to core/	4 weeks ago
search	Search lift: pre-merge parity polish for cin's review	4 weeks ago
stats	Lift /api/stats/* and /api/listening-stats/* into core/stats/	4 weeks ago
streaming	Mock streaming prep sleep in tests	4 weeks ago
watchlist	Lift _process_watchlist_scan_automatically to core/watchlist/auto_scan.py	4 weeks ago
wishlist	Coerce wishlist track counts before category checks	4 weeks ago
conftest.py	Split metadata source and Spotify status	3 weeks ago
test_acoustid_scanner.py	Fix null-pointer error in acoustid_scanner	1 month ago
test_album_completeness_job.py	Fix DummyConfigManager position in album completeness job test	4 weeks ago
test_auth_usage_throttle.py	test: auth last_used_at write throttle	1 month ago
test_config_save_retry.py	Stop config retry tests from writing to the real DB	4 weeks ago
test_content_filter_regex.py	Fix watchlist content filters: live false positives + auto-scan bypass	1 month ago
test_dashboard_events.py	Realign test file names	1 month ago
test_discogs_track_count.py	Discogs: count rows with empty type_ as real tracks too	1 month ago
test_downloads_pagination.py	Lift shared runtime state into core	4 weeks ago
test_duplicate_detector_mount_paths.py	Filter same-physical-file duplicates from duplicate detector	4 weeks ago
test_duplicate_detector_slskd_dedup.py	Add filename-pass safety: require duration agreement or artist match	3 weeks ago
test_enrichment_services.py	Consolidate enrichment bubble routes behind a service registry	3 weeks ago
test_featured_artist_completion.py	Match featured-artist tracks across discography completion	4 weeks ago
test_hifi_instance_methods.py	validate hifi instance reorder against pre-existing instances	4 weeks ago
test_hls_parsing.py	fix: pick OS-specific ffmpeg binary in hls demux fallback test	4 weeks ago
test_import_singles_parallel.py	Restore soulsync logger state between parallel-imports tests	3 weeks ago
test_library_reorganize.py	Fix CI test failures from incomplete dummy config and encoding	1 month ago
test_library_reorganize_orchestrator.py	Reorganize: fix moved-count + status/total UX issues from PR #377 review	1 month ago
test_library_track_identity.py	Make extract_external_ids recognize all source-tagging conventions	3 weeks ago
test_listening_stats_batch_queries.py	test: listening stats worker batched query paths	1 month ago
test_missing_cover_art.py	Fix CI test failures from incomplete dummy config and encoding	1 month ago
test_provenance_id_persistence.py	Persist source IDs at download time + backfill onto tracks on sync	3 weeks ago
test_qobuz_credential_sync.py	Sync Qobuz auth to enrichment worker after login	3 weeks ago
test_reorganize_db_methods.py	Reorganize queue: race + dedupe fixes from kettui review	4 weeks ago
test_reorganize_queue.py	Reorganize queue: race + dedupe fixes from kettui review	4 weeks ago
test_reorganize_runner.py	Library reorganize: FIFO queue with live status panel	4 weeks ago
test_repair_worker_album_fill.py	Fix CI test failures from incomplete dummy config and encoding	1 month ago
test_request_cleanup_timer.py	test: api/request periodic cleanup timer	1 month ago
test_runtime_state.py	Tighten metadata and import safety	4 weeks ago
test_script_split_integrity.py	Unify artist detail: route source artists to standalone page, retire inline Artists page	1 month ago
test_socketio_cors.py	Socket.IO CORS: handle self-review nits	4 weeks ago
test_spa_deep_linking.py	Rename Search page id from 'downloads' to 'search', bump to 2.43	1 month ago
test_sync_discovery_scan_events.py	Realign test file names	1 month ago
test_tidal_auth_instructions.py	Show Tidal callback port (not Spotify's) in auth instructions	4 weeks ago
test_tidal_auth_redirect_uri.py	Honor configured Tidal redirect_uri, drop request-host fallback	3 weeks ago
test_tidal_search_shortening.py	Reject Tidal streams that silently downgrade from the requested quality	1 month ago
test_tool_progress_events.py	Realign test file names	1 month ago
test_track_artist_matching.py	Add fallback negative-case test for track-artist matching	4 weeks ago
test_track_number_repair.py	Fix CI test failures from incomplete dummy config and encoding	1 month ago
test_track_search_single_query.py	test: api_search_tracks single-query track search	1 month ago
test_unknown_artist_fixer.py	Fix test using old deezer_track_id column name	1 month ago
test_watchlist_album_match.py	Stop watchlist re-downloading compilation tracks; catch slskd dedup orphans	3 weeks ago
test_watchlist_bulk_add.py	Bulk watchlist add: fall back through every source ID, not just active	4 weeks ago
test_watchlist_scanner_scan.py	Move the import flows and related post-processing pipelines into separate modules	4 weeks ago
test_websocket_client_transport.py	Repoint websocket transport test to core.js after split	1 month ago
test_websocket_infrastructure.py	Split metadata source and Spotify status	3 weeks ago
test_wishlist_pagination.py	test: wishlist SQL pagination and category filter	1 month ago
test_worker_existing_id_marks_matched.py	test: enrichment worker re-processing fix and migration backfill	1 month ago
test_worker_utils_album_track_count.py	Fix Album Completeness job reporting zero findings for every album	1 month ago