There is no way to use the username/password in the REST API.
A couple of questions for context:
1. What kind of app are you building? i.e. what kind of functionality does it offer?
2. Is it a web app or native app (e.g. Windows, Mac, iOS, Android).
Thank for reply! I'm using tokens so far, maybe i'll implement some "automatic token creation" page in future then.
I'm developing an alternative web fronted for Mantis (similar to Taskodrome but standalone): the builtin one is fully featured, but i need something more modern and quickly accessible for everyday use.
You're right — the current API flow in MantisBT requires a personal access token for authentication, and there's no built-in endpoint to generate one using just a username/password combo.
One workaround is to manually create a token through the UI the first time, then store and use it in your app securely.
Alternatively, if you control the Mantis instance, you could extend the REST API to support basic auth (though it's not recommended for production), or create a custom endpoint that handles token generation securely.
Looking forward to your open-source release — sounds like a useful project!