I’ve built a headless website with Kirby and Vue. Therefore, I’ve added some API Endpoints and do the Auth via Token. Everything works as expected but now I have a Cookie set in the Frontend.
I’d like to get rid of that Cookie because I don’t like to have any Cookies on the Site.
I’ve switched to Basic Auth. This works good on my local Environment, but when I move to my password protected Staging. The API calls won’t work anymore because the authenticated user isn’t logged in. When I try to access the Panel I get an error that the User doesn’t exists.
When I set up the CMS API-User in the htaccess at least the Frontend API calls work but I’m still not able to get into the Panel. When I add a user that got access to the Panel I can access the Panel but the Frontend API call fail.
Is there a way to get the Auth working without Cookie or Setting up the Users in htaccess when using Basic Auth?
Is there a way to have unauthorized calls to the API?