[GH-ISSUE #382] Android: UnifiedPush subscription not using saved user credentials #294

New issue

Closed

opened 2026-05-07 00:22:41 +02:00 by BreizhHardware · 6 comments

BreizhHardware commented 2026-05-07 00:22:41 +02:00

Owner

Copy link

Originally created by @ryester19 on GitHub (Aug 17, 2022).
Original GitHub issue: https://github.com/binwiederhier/ntfy/issues/382

Using Ntfy server 1.27.2, Android Ntfy app 1.13.0, and Android Element 1.4.32
ACL is enabled on the server, and auth-default-access set to 'deny-all'

The subscription that Element sets up for UnifiedPush use does not use the saved user credentials in the ntfy app. The user is an admin, and the "Managed users" page does say the user is being used for this topic. The only error I see in the server log is a "unauthorized: unauthorized" message

In order to get Element to pass the "Test Push" test, I have to give anonymous read-write access to the topic that's created by Element

Android log:
https://nopaste.net/PFREHjyS0Q

Originally created by @ryester19 on GitHub (Aug 17, 2022). Original GitHub issue: https://github.com/binwiederhier/ntfy/issues/382 Using Ntfy server 1.27.2, Android Ntfy app 1.13.0, and Android Element 1.4.32 ACL is enabled on the server, and auth-default-access set to 'deny-all' The subscription that Element sets up for UnifiedPush use does not use the saved user credentials in the ntfy app. The user is an admin, and the "Managed users" page does say the user is being used for this topic. The only error I see in the server log is a "unauthorized: unauthorized" message In order to get Element to pass the "Test Push" test, I have to give anonymous read-write access to the topic that's created by Element Android log: https://nopaste.net/PFREHjyS0Q

BreizhHardware 2026-05-07 00:22:41 +02:00

• closed this issue
• added the
  android-app
  question
  labels

BreizhHardware commented 2026-05-07 00:22:42 +02:00

Author

Owner

Copy link

@MaximilianGaedig commented on GitHub (Aug 18, 2022):

Just ran into the same issue, the workaround for now is using the ntfy.sh server for unified push and your own for other things but that's no real workaround as you are not using your server

<!-- gh-comment-id:1219272306 --> @MaximilianGaedig commented on GitHub (Aug 18, 2022): Just ran into the same issue, the workaround for now is using the ntfy.sh server for unified push and your own for other things but that's no real workaround as you are not using your server

BreizhHardware commented 2026-05-07 00:22:42 +02:00

Author

Owner

Copy link

@binwiederhier commented on GitHub (Aug 18, 2022):

This is not a bug in ntfy, but rather a design limitation of UnifiedPush (UP). In UP, the URL is the secret, user/password cannot be used in the spec.

This explains this in more detail: https://unifiedpush.org/users/distributors/ntfy/#limit-access-to-some-users

Specifically this section:

Pushers still need to be able to write to UnifiedPush topics to send push notifications. Add a rule to make UnifiedPush topics (they all start with “up”) world-writeable: ntfy access '*' 'up*' write-only

<!-- gh-comment-id:1219663284 --> @binwiederhier commented on GitHub (Aug 18, 2022): This is not a bug in ntfy, but rather a design limitation of UnifiedPush (UP). In UP, the URL is the secret, user/password cannot be used in the spec. This explains this in more detail: https://unifiedpush.org/users/distributors/ntfy/#limit-access-to-some-users Specifically this section: > Pushers still need to be able to write to UnifiedPush topics to send push notifications. Add a rule to make UnifiedPush topics (they all start with “up”) world-writeable: `ntfy access '*' 'up*' write-only`

BreizhHardware commented 2026-05-07 00:22:42 +02:00

Author

Owner

Copy link

@binwiederhier commented on GitHub (Aug 18, 2022):

For more questions about UP, please check out the UP Matrix room(s)

<!-- gh-comment-id:1219663534 --> @binwiederhier commented on GitHub (Aug 18, 2022): For more questions about UP, please check out the UP Matrix room(s)

BreizhHardware commented 2026-05-07 00:22:43 +02:00

Author

Owner

Copy link

@ryester19 commented on GitHub (Aug 18, 2022):

Gotcha. To get around this limitation in a more user-friendly way, could we add a ACL sub-option in the config file or an alias toggle in the 'ntfy access' command?

<!-- gh-comment-id:1219827453 --> @ryester19 commented on GitHub (Aug 18, 2022): Gotcha. To get around this limitation in a more user-friendly way, could we add a ACL sub-option in the config file or an alias toggle in the 'ntfy access' command?

BreizhHardware commented 2026-05-07 00:22:43 +02:00

Author

Owner

Copy link

@binwiederhier commented on GitHub (Aug 29, 2022):

@ryester19 Any suggestions?

<!-- gh-comment-id:1230411727 --> @binwiederhier commented on GitHub (Aug 29, 2022): @ryester19 Any suggestions?

BreizhHardware commented 2026-05-07 00:22:43 +02:00

Author

Owner

Copy link

@binwiederhier commented on GitHub (Sep 3, 2022):

Let me know if you have any suggestions. For now I'll close this issue.

<!-- gh-comment-id:1236178524 --> @binwiederhier commented on GitHub (Sep 3, 2022): Let me know if you have any suggestions. For now I'll close this issue.

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

dependabot/npm_and_yarn/web/fast-uri-3.1.2

email-verification

attachment-no-http2

attachment-fixes

attachment-s3

config-generator

postgres-replica

dockers-v2

postgres-support

postgres-webpush+user+message

postgres-webpush+user

postgres-webpush

1364-copy-action

crashfix

user-header

scalar-api-docs

cancel-scheduled

update-available

windows-server

303-update-notifications

postgres

admin-ui

require-login

http-clipboard

message-cache-lock

debian-stripe

predefined-users

busy-timeout

template-dir

ipv6

client-ip-header

apns-fix

feat_optional_require_login

security-updates

pg-message-cache

templating-disallow

templating-3

templating-2

message-size-limit+delay-limit

remove-rate-topics

html-emails

cf-priority

acl-underscores

auth-user-header

markdown

img-attach

web-improvements

utf8-headers

matrix-507-reject

http-response-writer

new-homepage-design

e2e

canary

windows

electron

update-messages

webhook-templating

v2.22.0

v2.21.0

v2.20.1

v2.20.0

v2.19.2

v2.19.1

v2.19.0

v2.18.0

v2.17.0

v2.16.0

v2.15.0

v2.14.0

v2.13.0

v2.12.0

v2.11.0

v2.10.0

v2.9.0

v2.8.0

v2.7.0

v2.6.2

v2.6.1

v2.6.0

v2.5.0

v2.4.0

v2.3.1

v2.3.0

v2.2.0

v2.1.2

v2.1.1

v2.1.0

v2.0.1

v2.0.0

v1.31.0

v1.30.1

v1.29.1

v1.29.0

v1.28.0

v1.27.2

v1.27.1

v1.26.0

v1.25.2

v1.25.1

v1.25.0

v1.24.0

v1.23.0

v1.22.0

v1.21.2

v1.21.1

v1.21.0

v1.20.0

v1.19.0

v1.18.1

v1.18.0

v1.17.1

v1.17.0

v1.16.0

v1.15.0

v1.14.1

v1.14.0

v1.13.0

v1.12.1

v1.12.0

v1.11.1

v1.11.2

v1.11.0

v1.10.0

v1.9.0

v1.8.0

v1.7.0

v1.6.1

v1.6.0

v1.5.3

v1.5.2

v1.5.1

v1.5.0

v1.4.8

v1.4.7

v1.4.6

v1.4.5

v1.4.4

v1.4.3

v1.4.2

v1.4.1

v1.4.0

v1.3.2

v1.3.3

v1.3.1

v1.3.0

v1.2.5

v1.2.4

v1.2.3

v1.2.2

v1.2.1

v1.2.0

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0.0

v0.0.5

v0.0.4

v0.0.3

v0.0.2

v0.0.1

Labels

Clear labels   

ai-generated

  

android-app

  

android-app

  

android-app

  

🪲 bug

  

build

  

build

  

dependencies

  

docs

  

enhancement

  

enhancement

  

🔥 HOT

  

in-progress 🏃

  

ios

  

prio:low

  

prio:low

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

🔒 security

  

server

  

server

  

unified-push

  

web-app

  

website

No labels

ai-generated

android-app

android-app

android-app

🪲 bug

build

build

dependencies

docs

enhancement

enhancement

🔥 HOT

in-progress 🏃

ios

prio:low

prio:low

pull-request

question

🔒 security

server

server

unified-push

web-app

website

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/ntfy#294

No description provided.