Pixelfed App Login

[michakrapp]

Hey Alex and contributors.
Thank you for this fantastic plugin.

I saw that the app has a Pixelfed integration class, should that handle the login possibility with the Pixelfed Apps?

I have tried to login with the Pixelfed for iOS, but it didn't work.
This is my nodeinfo:
https://bullifant.de/api/nodeinfo/2.0.json

First I had to change the output, because it seems that Pixelfed App needs the software node on the top level instead of the metadata. code

This way I could pass the loginPreflightCheck, get redirected to my WordPress to login and authorize, but after that I still stay on the server input and do not get logged in.

In the Admin settings of this plugin, I see apps getting registered (new app on every login try), but of course last used is never.

Following the debugging output (shortened the hashes with ...)

Debugger [2025-12-22 12:22:54.910] 200 POST [/oauth/token](https://bullifant.de/oauth/token?_wpnonce=905a0...&_pretty=1)
params = {
    "client_id": "x4tfwsbuhm4eddzmy...",
    "client_secret": "zCSnV5RX9dImKtz3cN7RfZSdDWIm0h...",
    "redirect_uri": "pixelfed://login",
    "grant_type": "authorization_code",
    "code": "6862e054f6089c3da254...",
    "scope": "read write follow push admin:read admin:write"
}
current_user = 0
calls = {
    "class-mastodon-oauth.php:155": "handle_oauth()"
}
Debugger [2025-12-22 12:22:54.560] 200 POST [/oauth/authorize](https://bullifant.de/oauth/authorize?_wpnonce=905a0...&_pretty=1)
params = {
    "_wpnonce": "e122...",
    "_wp_http_referer": "/wp-login.php?client_id=x4tfwsbuhm4eddzmy...&scope=read+write+follow+push&redirect_uri=pixelfed%3A%2F%2Flogin&response_type=code&action=enable-mastodon-apps-authenticate",
    "client_id": "x4tfwsbuhm4eddzm...",
    "scope": "read write follow push",
    "redirect_uri": "pixelfed://login",
    "response_type": "code",
    "action": "enable-mastodon-apps-authenticate",
    "authorize": "Authorize"
}
current_user = 3
calls = {
    "class-mastodon-oauth.php:155": "handle_oauth()"
}
Debugger [2025-12-22 12:22:53.040] 200 GET [/oauth/authorize?client_id=x4tfwsbuhm4edd...&scope=read+write+follow+push&redirect_uri=pixelfed://login&response_type=code](https://bullifant.de/oauth/authorize?client_id=x4tfwsbuhm4edd...&scope=read+write+follow+push&redirect_uri=pixelfed%3A%2F%2Flogin&response_type=code&_wpnonce=905a0...&_pretty=1)
params = {
    "client_id": "x4tfwsbuhm4ed...",
    "scope": "read write follow push",
    "redirect_uri": "pixelfed://login",
    "response_type": "code"
}
current_user = 3
calls = {
    "class-mastodon-oauth.php:155": "handle_oauth()"
}
Debugger [2025-12-22 12:22:51.690] 200 POST [/api/v1/apps](https://bullifant.de/api/v1/apps?_wpnonce=905a...&_pretty=1)
params = {
    "scopes": "read write follow push",
    "client_name": "Pixelfed for iOS",
    "redirect_uris": "pixelfed://login",
    "website": "https://github.com/pixelfed/pixelfed-rn"
}
current_user = 0
calls = {
    "class-mastodon-api.php:1830": "public_api_permission()"
}
user_agent = "Pixelfed/1 CFNetwork/3826.600.41 Darwin/24.6.0"
Debugger [2025-12-22 12:22:51.540] 200 GET [/api/nodeinfo/2.0.json](https://bullifant.de/api/nodeinfo/2.0.json?_wpnonce=905a0...&_pretty=1)
params = {
    "version": "2.0"
}
current_user = 0
calls = {
    "class-mastodon-api.php:1830": "public_api_permission()"
}
user_agent = "Pixelfed/1 CFNetwork/3826.600.41 Darwin/24.6.0"

Anything we can do here or has it to be done in the Pixelfed-rn repo?
Happy to help out and provide code.

[akirk]

It has been a while that I tried it and initially Pixelfed apps would only connect to specific versions of Pixelfed, thus the hardcoded version info.

The above looks already pretty successful since we receive an access token. I wonder if there is a problem with redirecting to that URL pixelfed://login?

[michakrapp]

Thx for the fast reply.
I tried to follow the login workflow in the app repo, but haven't seen what might be wrong or some apis are missing to make it work

[akirk]

Are you being redirected back into the app?

[michakrapp]

Yes. The login is shown in an in app browser window in the Pixelfed app.
After clicking the authorize button from WordPress this in app window closes and I'm back in the app.
But it just stays on the server input login screen without any reaction or error

[akirk]

Ok, I don't have an iOS device available but if I created a branch/PR, could you help test it?

[michakrapp]

Sure. Happy to help with testing or code, but can't see anything yet.

Btw here is my code to add the server to the top level.

function mkwp_enable_pixelfed_app( $ret ) {
	$pixelfed_server = [
        "name" => "pixelfed",
        "version" => "0.12.3"
    ];
	
	$ret[ 'software' ] = $pixelfed_server;
    //$ret[ 'metadata' ][ 'software' ] = $pixelfed_server;
	
	return $ret;
}

add_filter( 'mastodon_api_nodeinfo', 'mkwp_enable_pixelfed_app', 99, 1 );

[akirk]

Ok cool, thanks! Could you try https://github.com/akirk/enable-mastodon-apps/tree/fix-pixelfed-app ?

[michakrapp]

Seem to not (fully) works.

I think this check does not get correctly handled:
if ( false !== strpos( $_SERVER['HTTP_USER_AGENT'], 'Pixelfed' ) ) {

You can test with the Pixelfed App (should work the same for Android) with the server url bullifant.de

Just adding my software fix to the node info output

[michakrapp]

Sorry seemed to be a coding error with the check on my side.
But the workflow is still the same, no login

[michakrapp]

#281

[akirk]

Thanks! Under Android, it works with just #281 and does not need https://github.com/akirk/enable-mastodon-apps/tree/fix-pixelfed-app

[michakrapp]

OK thx. Made the changes manually via ftp, maybe did something wrong.
Will test again then

[michakrapp]

@akirk since we merged on the other branch, will you do a merge of that into main for release?