From 30e97259cd4b34fe51a70672c9949c683c2c3369 Mon Sep 17 00:00:00 2001
From: dammitjeff <44111923+dammitjeff@users.noreply.github.com>
Date: Sun, 24 May 2026 17:17:06 -0700
Subject: [PATCH 1/3] Add spotify playlist fetching, updated frontend
 touchpoints

---
 src/util/http.go                              |  17 +-
 src/web/backend/custom_playlists.go           |  15 +-
 src/web/backend/spotify.go                    | 804 ++++++++++++++++++
 src/web/frontend/src/assets/spotify.svg       |   1 +
 .../src/components/ui/ImportModal.jsx         |   4 +-
 .../src/components/ui/PlaylistCard.jsx        |   3 +-
 6 files changed, 832 insertions(+), 12 deletions(-)
 create mode 100644 src/web/backend/spotify.go
 create mode 100644 src/web/frontend/src/assets/spotify.svg

diff --git a/src/util/http.go b/src/util/http.go
index 6e3634da..8c02c7e4 100644
--- a/src/util/http.go
+++ b/src/util/http.go
@@ -112,15 +112,22 @@ func DownloadFile(url, destPath string) (string, error) {
 	return destPath, nil
 }
 
-// DownloadCover downloads coverURL into coversDir and returns "/api/covers/<mbid>.jpg".
-// Returns "" if url is empty.
+// DownloadCover downloads coverURL into coversDir and returns "/api/covers/<id>.jpg".
+// For CoverArtArchive URLs the id is the MusicBrainz release MBID (second-to-last
+// path segment). For Spotify CDN URLs (i.scdn.co) the id is the image hash (last
+// path segment). Returns "" if url is empty.
 func DownloadCover(url, coversDir string) string {
 	if url == "" {
 		return ""
 	}
 	parts := strings.Split(strings.TrimRight(url, "/"), "/")
-	mbid := parts[len(parts)-2]
-	destPath := filepath.Join(coversDir, mbid+".jpg")
+	// Spotify CDN: https://i.scdn.co/image/<hash>  → use last segment
+	// CAA:         https://coverartarchive.org/release/<mbid>/front-250 → use second-to-last
+	id := parts[len(parts)-2]
+	if strings.Contains(url, "scdn.co") || strings.Contains(url, "spotifycdn.com") {
+		id = parts[len(parts)-1]
+	}
+	destPath := filepath.Join(coversDir, id+".jpg")
 	if _, err := os.Stat(destPath); os.IsNotExist(err) {
 		resp, err := http.Get(url) //nolint:noctx
 		if err == nil {
@@ -140,5 +147,5 @@ func DownloadCover(url, coversDir string) string {
 			}()
 		}
 	}
-	return "/api/covers/" + mbid + ".jpg"
+	return "/api/covers/" + id + ".jpg"
 }
diff --git a/src/web/backend/custom_playlists.go b/src/web/backend/custom_playlists.go
index 0a778312..f1914e75 100644
--- a/src/web/backend/custom_playlists.go
+++ b/src/web/backend/custom_playlists.go
@@ -24,10 +24,10 @@ import (
 type CustomPlaylist struct {
 	ID              string    `json:"id"`
 	Name            string    `json:"name"`
-	Source          string    `json:"source"`                    // "listenbrainz" | "apple_music"
-	SourceURL       string    `json:"source_url,omitempty"`      // original URL for dedup + refresh
-	LBMBID          string    `json:"lb_mbid,omitempty"`         // ListenBrainz MBID (backward compat)
-	ArtworkURL      string    `json:"artwork_url,omitempty"`     // playlist cover image (Apple Music)
+	Source          string    `json:"source"`                     // "listenbrainz" | "apple_music" | "spotify"
+	SourceURL       string    `json:"source_url,omitempty"`       // original URL for dedup + refresh
+	LBMBID          string    `json:"lb_mbid,omitempty"`          // ListenBrainz MBID (backward compat)
+	ArtworkURL      string    `json:"artwork_url,omitempty"`      // playlist cover image (Apple Music)
 	ArtworkUploaded bool      `json:"artwork_uploaded,omitempty"` // true after artwork has been pushed to the music app
 	RefreshDays     int       `json:"refresh_days"`
 	ColorIndex      int       `json:"color_index"`
@@ -137,6 +137,9 @@ func fetchCustomPlaylistTracks(p CustomPlaylist) (FetchResult, error) {
 	case "apple_music":
 		name, art, tracks, err := fetchAppleMusicPlaylist(p.SourceURL)
 		return FetchResult{name, art, tracks}, err
+	case "spotify":
+		name, art, tracks, err := fetchSpotifyPlaylist(p.SourceURL)
+		return FetchResult{name, art, tracks}, err
 	default: // "listenbrainz" or legacy empty
 		mbid := p.LBMBID
 		if mbid == "" && p.SourceURL != "" {
@@ -167,6 +170,8 @@ func extractSourceID(source, url string) (string, error) {
 	switch source {
 	case "apple_music":
 		return extractAppleMusicID(url)
+	case "spotify":
+		return extractSpotifyID(url)
 	default:
 		return extractLBMBID(url)
 	}
@@ -306,7 +311,7 @@ func (s *Server) handleImportCustomPlaylist(w http.ResponseWriter, r *http.Reque
 	// Save metadata
 	// Derive LBMBID for backward compatibility (LB playlists only)
 	var lbMBID string
-	if body.Source != "apple_music" {
+	if body.Source != "apple_music" && body.Source != "spotify" {
 		lbMBID = sourceID
 	}
 
diff --git a/src/web/backend/spotify.go b/src/web/backend/spotify.go
new file mode 100644
index 00000000..e3570391
--- /dev/null
+++ b/src/web/backend/spotify.go
@@ -0,0 +1,804 @@
+package backend
+
+import (
+	"bytes"
+	"crypto/hmac"
+	"crypto/sha1"
+	"encoding/base32"
+	"encoding/base64"
+	"encoding/binary"
+	"encoding/json"
+	"fmt"
+	"io"
+	"log/slog"
+	"net/http"
+	"net/http/cookiejar"
+	"net/url"
+	"regexp"
+	"strconv"
+	"strings"
+	"sync"
+	"time"
+)
+
+// ── URL parsing ──────────────────────────────────────────────────────────────
+
+var spotifyPlaylistURLRe = regexp.MustCompile(
+	`^https?://open\.spotify\.com/(?:[a-z]{2}-[a-z]{2}/|[a-z]{2}/)?playlist/([a-zA-Z0-9]+)`,
+)
+
+func extractSpotifyID(raw string) (string, error) {
+	raw = strings.TrimSpace(raw)
+	if idx := strings.IndexByte(raw, '?'); idx != -1 {
+		raw = raw[:idx]
+	}
+	m := spotifyPlaylistURLRe.FindStringSubmatch(raw)
+	if len(m) < 2 {
+		return "", fmt.Errorf("not a valid Spotify playlist URL")
+	}
+	return m[1], nil
+}
+
+// ── TOTP authentication ─────────────────────────────────────────────────────
+//
+// Spotify's web player authenticates with a TOTP token derived from a secret
+// that rotates with client updates. We fetch the latest secret from a
+// community-maintained repo, falling back to a hardcoded snapshot.
+
+var (
+	fallbackTOTPVersion = 61
+	fallbackTOTPSecret  = []byte{
+		44, 55, 47, 42, 70, 40, 34, 114, 76, 74,
+		50, 111, 120, 97, 75, 76, 94, 102, 43, 69,
+		49, 120, 118, 80, 64, 78,
+	}
+)
+
+var (
+	secretCacheMu     sync.Mutex
+	cachedVersion     int
+	cachedSecret      []byte
+	secretCacheExpiry time.Time
+)
+
+const secretCacheTTL = 15 * time.Minute
+
+// getSpotifyTOTPSecret returns the current TOTP version and secret bytes.
+// Fetches from the remote secrets repo, cached for 15 minutes, with a
+// hardcoded fallback if the remote is unreachable.
+func getSpotifyTOTPSecret() (int, []byte) {
+	secretCacheMu.Lock()
+	defer secretCacheMu.Unlock()
+
+	if cachedSecret != nil && time.Now().Before(secretCacheExpiry) {
+		return cachedVersion, cachedSecret
+	}
+
+	client := &http.Client{Timeout: 5 * time.Second}
+	resp, err := client.Get("https://code.thetadev.de/ThetaDev/spotify-secrets/raw/branch/main/secrets/secretDict.json")
+	if err != nil {
+		slog.Debug("spotify: failed to fetch remote secrets, using fallback", "err", err)
+		return fallbackTOTPVersion, fallbackTOTPSecret
+	}
+	defer func() { _ = resp.Body.Close() }()
+
+	if resp.StatusCode != http.StatusOK {
+		slog.Debug("spotify: remote secrets returned non-200, using fallback", "status", resp.StatusCode)
+		return fallbackTOTPVersion, fallbackTOTPSecret
+	}
+
+	var secrets map[string][]int
+	if err := json.NewDecoder(resp.Body).Decode(&secrets); err != nil {
+		slog.Debug("spotify: failed to parse remote secrets, using fallback", "err", err)
+		return fallbackTOTPVersion, fallbackTOTPSecret
+	}
+
+	// Find the highest version key
+	maxVer := -1
+	var maxKey string
+	for k := range secrets {
+		v, err := strconv.Atoi(k)
+		if err != nil {
+			continue
+		}
+		if v > maxVer {
+			maxVer = v
+			maxKey = k
+		}
+	}
+	if maxVer < 0 {
+		return fallbackTOTPVersion, fallbackTOTPSecret
+	}
+
+	raw := secrets[maxKey]
+	secret := make([]byte, len(raw))
+	for i, v := range raw {
+		secret[i] = byte(v)
+	}
+
+	cachedVersion = maxVer
+	cachedSecret = secret
+	secretCacheExpiry = time.Now().Add(secretCacheTTL)
+	slog.Debug("spotify: fetched remote TOTP secret", "version", maxVer, "len", len(secret))
+	return maxVer, secret
+}
+
+// generateSpotifyTOTP produces a 6-digit TOTP code and version number.
+// The secret bytes are XOR-transformed, joined as decimal strings, then
+// base32-encoded before being fed into standard RFC 6238 TOTP.
+func generateSpotifyTOTP() (string, int) {
+	version, secretBytes := getSpotifyTOTPSecret()
+
+	transformed := make([]int, len(secretBytes))
+	for i, b := range secretBytes {
+		transformed[i] = int(b) ^ ((i % 33) + 9)
+	}
+
+	var joined strings.Builder
+	for _, n := range transformed {
+		joined.WriteString(strconv.Itoa(n))
+	}
+
+	totpSecret := base32.StdEncoding.WithPadding(base32.NoPadding).EncodeToString([]byte(joined.String()))
+	return computeTOTP(totpSecret), version
+}
+
+// computeTOTP implements RFC 6238 with a 30-second period and 6-digit output.
+func computeTOTP(base32Secret string) string {
+	key, err := base32.StdEncoding.WithPadding(base32.NoPadding).DecodeString(base32Secret)
+	if err != nil {
+		key, _ = base32.StdEncoding.DecodeString(base32Secret)
+	}
+
+	counter := uint64(time.Now().Unix() / 30)
+	buf := make([]byte, 8)
+	binary.BigEndian.PutUint64(buf, counter)
+
+	mac := hmac.New(sha1.New, key)
+	mac.Write(buf)
+	hash := mac.Sum(nil)
+
+	offset := hash[len(hash)-1] & 0x0f
+	code := binary.BigEndian.Uint32(hash[offset:offset+4]) & 0x7fffffff
+	return fmt.Sprintf("%06d", code%1000000)
+}
+
+// ── Session management ──────────────────────────────────────────────────────
+//
+// A spotifySession caches all auth state (cookies, tokens, GraphQL hash) with
+// a 10-minute TTL. On failure the caller invalidates and retries once.
+
+const spotifyUA = "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) " +
+	"AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36"
+
+type spotifySession struct {
+	mu            sync.Mutex
+	client        *http.Client
+	clientVersion string
+	deviceID      string
+	accessToken   string
+	clientID      string
+	clientToken   string
+	playlistHash  string
+	expiresAt     time.Time
+}
+
+var spSession = &spotifySession{}
+
+func (s *spotifySession) invalidate() {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	s.expiresAt = time.Time{}
+}
+
+// ensure initializes or reuses the session. Four-step flow:
+// visitHome → fetchAccessToken (TOTP) → fetchClientToken → extractPlaylistHash.
+func (s *spotifySession) ensure() error {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+
+	if time.Now().Before(s.expiresAt) {
+		return nil
+	}
+
+	slog.Info("spotify: initializing new session")
+
+	jar, _ := cookiejar.New(nil)
+	s.client = &http.Client{Jar: jar, Timeout: 30 * time.Second}
+
+	jsPack, err := s.visitHome()
+	if err != nil {
+		return fmt.Errorf("spotify session: visit home failed: %w", err)
+	}
+	if err := s.fetchAccessToken(); err != nil {
+		return fmt.Errorf("spotify session: access token failed: %w", err)
+	}
+	if err := s.fetchClientToken(); err != nil {
+		return fmt.Errorf("spotify session: client token failed: %w", err)
+	}
+	if err := s.extractPlaylistHash(jsPack); err != nil {
+		return fmt.Errorf("spotify session: hash extraction failed: %w", err)
+	}
+
+	s.expiresAt = time.Now().Add(10 * time.Minute)
+
+	hashPreview := s.playlistHash
+	if len(hashPreview) > 16 {
+		hashPreview = hashPreview[:16] + "..."
+	}
+	slog.Info("spotify: session ready",
+		"version", s.clientVersion,
+		"hash", hashPreview,
+	)
+	return nil
+}
+
+// visitHome fetches open.spotify.com to establish cookies and extract the
+// client version, device ID (sp_t cookie), and web-player JS bundle URL.
+func (s *spotifySession) visitHome() (string, error) {
+	req, err := http.NewRequest("GET", "https://open.spotify.com", nil)
+	if err != nil {
+		return "", err
+	}
+	req.Header.Set("User-Agent", spotifyUA)
+	req.Header.Set("Accept", "text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8")
+	req.Header.Set("Accept-Language", "en-US,en;q=0.9")
+
+	resp, err := s.client.Do(req)
+	if err != nil {
+		return "", err
+	}
+	defer func() { _ = resp.Body.Close() }()
+
+	body, err := io.ReadAll(io.LimitReader(resp.Body, 2*1024*1024))
+	if err != nil {
+		return "", err
+	}
+	html := string(body)
+
+	// Client version from base64-encoded appServerConfig
+	const cfgStart = `<script id="appServerConfig" type="text/plain">`
+	const cfgEnd = `</script>`
+	startIdx := strings.Index(html, cfgStart)
+	if startIdx < 0 {
+		return "", fmt.Errorf("appServerConfig not found in page")
+	}
+	startIdx += len(cfgStart)
+	endIdx := strings.Index(html[startIdx:], cfgEnd)
+	if endIdx < 0 {
+		return "", fmt.Errorf("appServerConfig closing tag not found")
+	}
+
+	cfgJSON, err := base64.StdEncoding.DecodeString(strings.TrimSpace(html[startIdx : startIdx+endIdx]))
+	if err != nil {
+		cfgJSON, err = base64.RawStdEncoding.DecodeString(strings.TrimSpace(html[startIdx : startIdx+endIdx]))
+		if err != nil {
+			return "", fmt.Errorf("failed to decode appServerConfig: %w", err)
+		}
+	}
+
+	var serverCfg struct {
+		ClientVersion string `json:"clientVersion"`
+	}
+	if err := json.Unmarshal(cfgJSON, &serverCfg); err != nil {
+		return "", fmt.Errorf("failed to parse appServerConfig: %w", err)
+	}
+	s.clientVersion = serverCfg.ClientVersion
+
+	// Device ID from sp_t cookie
+	u, _ := url.Parse("https://open.spotify.com")
+	for _, c := range s.client.Jar.Cookies(u) {
+		if c.Name == "sp_t" {
+			s.deviceID = c.Value
+			break
+		}
+	}
+
+	// Find the web-player JS bundle
+	var jsPack string
+	for _, link := range extractJSLinks(html) {
+		if strings.Contains(link, "web-player/web-player") && strings.HasSuffix(link, ".js") {
+			jsPack = link
+			break
+		}
+	}
+	if jsPack == "" {
+		return "", fmt.Errorf("web-player JS pack not found in page")
+	}
+
+	return jsPack, nil
+}
+
+// fetchAccessToken obtains a bearer token via TOTP.
+func (s *spotifySession) fetchAccessToken() error {
+	totp, version := generateSpotifyTOTP()
+
+	tokenURL := "https://open.spotify.com/api/token?" + url.Values{
+		"reason":      {"init"},
+		"productType": {"web-player"},
+		"totp":        {totp},
+		"totpVer":     {strconv.Itoa(version)},
+		"totpServer":  {totp},
+	}.Encode()
+
+	req, err := http.NewRequest("GET", tokenURL, nil)
+	if err != nil {
+		return err
+	}
+	req.Header.Set("User-Agent", spotifyUA)
+	req.Header.Set("Accept", "application/json")
+	req.Header.Set("Referer", "https://open.spotify.com/")
+
+	resp, err := s.client.Do(req)
+	if err != nil {
+		return err
+	}
+	defer func() { _ = resp.Body.Close() }()
+
+	if resp.StatusCode != http.StatusOK {
+		b, _ := io.ReadAll(io.LimitReader(resp.Body, 512))
+		return fmt.Errorf("token endpoint returned %d: %s", resp.StatusCode, string(b))
+	}
+
+	var tok struct {
+		AccessToken string `json:"accessToken"`
+		ClientID    string `json:"clientId"`
+	}
+	if err := json.NewDecoder(resp.Body).Decode(&tok); err != nil {
+		return fmt.Errorf("failed to parse token response: %w", err)
+	}
+	if tok.AccessToken == "" {
+		return fmt.Errorf("received empty access token")
+	}
+
+	s.accessToken = tok.AccessToken
+	s.clientID = tok.ClientID
+	return nil
+}
+
+// fetchClientToken obtains a client token from clienttoken.spotify.com.
+func (s *spotifySession) fetchClientToken() error {
+	payload, err := json.Marshal(map[string]any{
+		"client_data": map[string]any{
+			"client_version": s.clientVersion,
+			"client_id":      s.clientID,
+			"js_sdk_data": map[string]any{
+				"device_brand": "unknown",
+				"device_model": "unknown",
+				"os":           "windows",
+				"os_version":   "NT 10.0",
+				"device_id":    s.deviceID,
+				"device_type":  "computer",
+			},
+		},
+	})
+	if err != nil {
+		return err
+	}
+
+	req, err := http.NewRequest("POST", "https://clienttoken.spotify.com/v1/clienttoken", bytes.NewReader(payload))
+	if err != nil {
+		return err
+	}
+	req.Header.Set("Content-Type", "application/json")
+	req.Header.Set("Accept", "application/json")
+	req.Header.Set("User-Agent", spotifyUA)
+
+	resp, err := s.client.Do(req)
+	if err != nil {
+		return err
+	}
+	defer func() { _ = resp.Body.Close() }()
+
+	if resp.StatusCode != http.StatusOK {
+		b, _ := io.ReadAll(io.LimitReader(resp.Body, 512))
+		return fmt.Errorf("client token endpoint returned %d: %s", resp.StatusCode, string(b))
+	}
+
+	var result struct {
+		ResponseType string `json:"response_type"`
+		GrantedToken struct {
+			Token string `json:"token"`
+		} `json:"granted_token"`
+	}
+	if err := json.NewDecoder(resp.Body).Decode(&result); err != nil {
+		return fmt.Errorf("failed to parse client token response: %w", err)
+	}
+	if result.ResponseType != "RESPONSE_GRANTED_TOKEN_RESPONSE" {
+		return fmt.Errorf("unexpected client token response type: %s", result.ResponseType)
+	}
+	if result.GrantedToken.Token == "" {
+		return fmt.Errorf("received empty client token")
+	}
+
+	s.clientToken = result.GrantedToken.Token
+	return nil
+}
+
+// extractPlaylistHash fetches the web-player JS bundle and its webpack chunks
+// to find the SHA256 hash for the "fetchPlaylist" persisted GraphQL query.
+func (s *spotifySession) extractPlaylistHash(jsPackURL string) error {
+	req, err := http.NewRequest("GET", jsPackURL, nil)
+	if err != nil {
+		return err
+	}
+	req.Header.Set("User-Agent", spotifyUA)
+
+	resp, err := s.client.Do(req)
+	if err != nil {
+		return err
+	}
+	defer func() { _ = resp.Body.Close() }()
+
+	packBody, err := io.ReadAll(io.LimitReader(resp.Body, 10*1024*1024))
+	if err != nil {
+		return err
+	}
+	jsContent := string(packBody)
+
+	// Check the main pack first
+	if hash := findPartHash(jsContent, "fetchPlaylist"); hash != "" {
+		s.playlistHash = hash
+		return nil
+	}
+
+	// Fall back to scanning webpack chunks
+	nameMap, hashMap, err := extractMappings(jsContent)
+	if err != nil {
+		return fmt.Errorf("failed to extract chunk mappings: %w", err)
+	}
+
+	chunkFiles := combineChunks(nameMap, hashMap)
+	slog.Debug("spotify: scanning JS chunks for hash", "count", len(chunkFiles))
+
+	type chunkResult struct {
+		content string
+		err     error
+	}
+
+	sem := make(chan struct{}, 10)
+	results := make(chan chunkResult, len(chunkFiles))
+
+	for _, file := range chunkFiles {
+		chunkURL := "https://open.spotifycdn.com/cdn/build/web-player/" + file
+		go func(u string) {
+			sem <- struct{}{}
+			defer func() { <-sem }()
+
+			r, err := http.NewRequest("GET", u, nil)
+			if err != nil {
+				results <- chunkResult{err: err}
+				return
+			}
+			r.Header.Set("User-Agent", spotifyUA)
+
+			resp, err := s.client.Do(r)
+			if err != nil {
+				results <- chunkResult{err: err}
+				return
+			}
+			defer func() { _ = resp.Body.Close() }()
+
+			b, err := io.ReadAll(io.LimitReader(resp.Body, 5*1024*1024))
+			if err != nil {
+				results <- chunkResult{err: err}
+				return
+			}
+			results <- chunkResult{content: string(b)}
+		}(chunkURL)
+	}
+
+	for i := 0; i < len(chunkFiles); i++ {
+		r := <-results
+		if r.err != nil {
+			continue
+		}
+		if hash := findPartHash(r.content, "fetchPlaylist"); hash != "" {
+			s.playlistHash = hash
+			for j := i + 1; j < len(chunkFiles); j++ {
+				<-results
+			}
+			return nil
+		}
+	}
+
+	return fmt.Errorf("fetchPlaylist hash not found in any JS bundle")
+}
+
+// ── Partner API ─────────────────────────────────────────────────────────────
+
+type spotifyImageSource struct {
+	URL    string `json:"url"`
+	Width  int    `json:"width"`
+	Height int    `json:"height"`
+}
+
+type partnerPlaylistResp struct {
+	Data struct {
+		PlaylistV2 struct {
+			Name    string         `json:"name"`
+			Images  struct {
+				Items []struct {
+					Sources []spotifyImageSource `json:"sources"`
+				} `json:"items"`
+			} `json:"images"`
+			Content partnerContent `json:"content"`
+		} `json:"playlistV2"`
+	} `json:"data"`
+}
+
+type partnerContent struct {
+	TotalCount int           `json:"totalCount"`
+	Items      []partnerItem `json:"items"`
+}
+
+type partnerItem struct {
+	ItemV2 struct {
+		Data partnerTrackData `json:"data"`
+	} `json:"itemV2"`
+}
+
+type partnerTrackData struct {
+	Typename string `json:"__typename"`
+	Name     string `json:"name"`
+	Artists  struct {
+		Items []struct {
+			Profile struct {
+				Name string `json:"name"`
+			} `json:"profile"`
+		} `json:"items"`
+	} `json:"artists"`
+	AlbumOfTrack struct {
+		Name     string `json:"name"`
+		CoverArt struct {
+			Sources []spotifyImageSource `json:"sources"`
+		} `json:"coverArt"`
+	} `json:"albumOfTrack"`
+}
+
+// ── Playlist fetching ───────────────────────────────────────────────────────
+
+// fetchSpotifyPlaylist fetches a public Spotify playlist via the internal
+// partner API (api-partner.spotify.com). Retries once with a fresh session
+// on failure. Returns playlist name, artwork URL, and normalized tracks.
+func fetchSpotifyPlaylist(playlistURL string) (string, string, [][4]string, error) {
+	id, err := extractSpotifyID(playlistURL)
+	if err != nil {
+		return "", "", nil, err
+	}
+
+	name, artwork, tracks, err := fetchPlaylistByID(id)
+	if err != nil {
+		slog.Debug("spotify: retrying with fresh session", "err", err)
+		spSession.invalidate()
+		name, artwork, tracks, err = fetchPlaylistByID(id)
+	}
+	if err != nil {
+		return "", "", nil, err
+	}
+	if len(tracks) == 0 {
+		return "", "", nil, fmt.Errorf("spotify: playlist %q has no tracks", id)
+	}
+
+	slog.Info("spotify: fetched playlist", "name", name, "tracks", len(tracks))
+	return name, artwork, tracks, nil
+}
+
+func fetchPlaylistByID(id string) (string, string, [][4]string, error) {
+	if err := spSession.ensure(); err != nil {
+		return "", "", nil, err
+	}
+
+	const pageSize = 343
+
+	resp, err := queryPartnerAPI(id, 0, pageSize)
+	if err != nil {
+		return "", "", nil, err
+	}
+
+	pl := resp.Data.PlaylistV2
+	name := pl.Name
+	if name == "" {
+		name = "Spotify Playlist"
+	}
+
+	artworkURL := ""
+	if len(pl.Images.Items) > 0 && len(pl.Images.Items[0].Sources) > 0 {
+		artworkURL = pickBestSource(pl.Images.Items[0].Sources, 300)
+	}
+
+	tracks := extractTracks(pl.Content.Items)
+
+	// Paginate
+	for offset := pageSize; offset < pl.Content.TotalCount; offset += pageSize {
+		page, err := queryPartnerAPI(id, offset, pageSize)
+		if err != nil {
+			slog.Warn("spotify: pagination failed, returning partial results", "offset", offset, "err", err)
+			break
+		}
+		tracks = append(tracks, extractTracks(page.Data.PlaylistV2.Content.Items)...)
+	}
+
+	return name, artworkURL, tracks, nil
+}
+
+// queryPartnerAPI sends a persisted GraphQL query to api-partner.spotify.com.
+func queryPartnerAPI(playlistID string, offset, limit int) (*partnerPlaylistResp, error) {
+	variables, _ := json.Marshal(map[string]any{
+		"uri":                       "spotify:playlist:" + playlistID,
+		"offset":                    offset,
+		"limit":                     limit,
+		"enableWatchFeedEntrypoint": false,
+	})
+	extensions, _ := json.Marshal(map[string]any{
+		"persistedQuery": map[string]any{
+			"version":    1,
+			"sha256Hash": spSession.playlistHash,
+		},
+	})
+
+	reqURL := "https://api-partner.spotify.com/pathfinder/v1/query?" + url.Values{
+		"operationName": {"fetchPlaylist"},
+		"variables":     {string(variables)},
+		"extensions":    {string(extensions)},
+	}.Encode()
+
+	req, err := http.NewRequest("GET", reqURL, nil)
+	if err != nil {
+		return nil, err
+	}
+	req.Header.Set("Authorization", "Bearer "+spSession.accessToken)
+	req.Header.Set("Client-Token", spSession.clientToken)
+	req.Header.Set("Spotify-App-Version", spSession.clientVersion)
+	req.Header.Set("Accept", "application/json")
+	req.Header.Set("Accept-Language", "en")
+	req.Header.Set("User-Agent", spotifyUA)
+
+	resp, err := spSession.client.Do(req)
+	if err != nil {
+		return nil, fmt.Errorf("partner API request failed: %w", err)
+	}
+	defer func() { _ = resp.Body.Close() }()
+
+	if resp.StatusCode != http.StatusOK {
+		b, _ := io.ReadAll(io.LimitReader(resp.Body, 1024))
+		return nil, fmt.Errorf("partner API returned %d: %s", resp.StatusCode, string(b))
+	}
+
+	var result partnerPlaylistResp
+	if err := json.NewDecoder(resp.Body).Decode(&result); err != nil {
+		return nil, fmt.Errorf("failed to parse partner API response: %w", err)
+	}
+	return &result, nil
+}
+
+// ── Track extraction helpers ────────────────────────────────────────────────
+
+func extractTracks(items []partnerItem) [][4]string {
+	tracks := make([][4]string, 0, len(items))
+	for _, item := range items {
+		t := item.ItemV2.Data
+		if t.Name == "" {
+			continue
+		}
+
+		artists := make([]string, 0, len(t.Artists.Items))
+		for _, a := range t.Artists.Items {
+			if a.Profile.Name != "" {
+				artists = append(artists, a.Profile.Name)
+			}
+		}
+
+		coverURL := ""
+		if len(t.AlbumOfTrack.CoverArt.Sources) > 0 {
+			coverURL = pickBestSource(t.AlbumOfTrack.CoverArt.Sources, 300)
+		}
+
+		tracks = append(tracks, [4]string{
+			t.Name,
+			strings.Join(artists, ", "),
+			t.AlbumOfTrack.Name,
+			coverURL,
+		})
+	}
+	return tracks
+}
+
+// pickBestSource returns the image URL closest to targetSize pixels.
+func pickBestSource(sources []spotifyImageSource, targetSize int) string {
+	if len(sources) == 0 {
+		return ""
+	}
+	best := sources[0].URL
+	bestDiff := abs(sources[0].Height - targetSize)
+	for _, s := range sources[1:] {
+		if s.Height == 0 {
+			continue
+		}
+		if diff := abs(s.Height - targetSize); diff < bestDiff {
+			best = s.URL
+			bestDiff = diff
+		}
+	}
+	return best
+}
+
+func abs(n int) int {
+	if n < 0 {
+		return -n
+	}
+	return n
+}
+
+// ── JS bundle parsing ───────────────────────────────────────────────────────
+//
+// Spotify's web player uses webpack. The persisted GraphQL query hashes are
+// embedded in JS chunks. These helpers extract <script> URLs from the home
+// page HTML, parse webpack chunk mappings, and search for operation hashes.
+
+var scriptSrcRe = regexp.MustCompile(`<script[^>]+src="([^"]+)"`)
+
+func extractJSLinks(html string) []string {
+	matches := scriptSrcRe.FindAllStringSubmatch(html, -1)
+	links := make([]string, 0, len(matches))
+	for _, m := range matches {
+		if strings.HasSuffix(m[1], ".js") {
+			links = append(links, m[1])
+		}
+	}
+	return links
+}
+
+var (
+	jsObjectMapRe = regexp.MustCompile(`\{\d+:"[^"]+"(?:,\d+:"[^"]+")*\}`)
+	jsKVRe        = regexp.MustCompile(`(\d+):"([^"]+)"`)
+)
+
+// extractMappings pulls webpack chunk name/hash mappings from the main JS pack.
+func extractMappings(jsCode string) (nameMap, hashMap map[int]string, err error) {
+	matches := jsObjectMapRe.FindAllString(jsCode, -1)
+	if len(matches) < 5 {
+		return nil, nil, fmt.Errorf("found only %d object maps, need at least 5", len(matches))
+	}
+	nameMap = parseJSObjectMap(matches[4])
+	hashMap = parseJSObjectMap(matches[3])
+	return nameMap, hashMap, nil
+}
+
+func parseJSObjectMap(s string) map[int]string {
+	m := make(map[int]string)
+	for _, match := range jsKVRe.FindAllStringSubmatch(s, -1) {
+		k, _ := strconv.Atoi(match[1])
+		m[k] = match[2]
+	}
+	return m
+}
+
+func combineChunks(nameMap, hashMap map[int]string) []string {
+	chunks := make([]string, 0, len(nameMap))
+	for key, name := range nameMap {
+		if hash, ok := hashMap[key]; ok {
+			chunks = append(chunks, name+"."+hash+".js")
+		}
+	}
+	return chunks
+}
+
+// findPartHash searches JS content for a persisted-query hash by operation name.
+func findPartHash(jsContent, name string) string {
+	needle := `"` + name + `","query","`
+	idx := strings.Index(jsContent, needle)
+	if idx < 0 {
+		needle = `"` + name + `","mutation","`
+		idx = strings.Index(jsContent, needle)
+	}
+	if idx < 0 {
+		return ""
+	}
+	rest := jsContent[idx+len(needle):]
+	end := strings.IndexByte(rest, '"')
+	if end < 0 {
+		return ""
+	}
+	return rest[:end]
+}
diff --git a/src/web/frontend/src/assets/spotify.svg b/src/web/frontend/src/assets/spotify.svg
new file mode 100644
index 00000000..f9a8e99a
--- /dev/null
+++ b/src/web/frontend/src/assets/spotify.svg
@@ -0,0 +1 @@
+<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 496 512"><path fill="#1ed760" d="M248 8C111.1 8 0 119.1 0 256s111.1 248 248 248 248-111.1 248-248S384.9 8 248 8zm100.7 364.9c-4.2 0-6.8-1.3-10.7-3.6-62.4-37.6-135-39.2-206.7-24.5-3.9 1-9 2.6-11.9 2.6-9.7 0-15.8-7.7-15.8-15.8 0-10.3 6.1-15.2 13.6-16.8 81.9-18.1 165.6-16.5 237 26.2 6.1 3.9 9.7 7.4 9.7 16.5s-7.1 15.4-15.2 15.4zm26.9-65.6c-5.2 0-8.7-2.3-12.3-4.2-62.5-37-155.7-51.9-238.6-29.4-4.8 1.3-7.4 2.6-11.9 2.6-10.7 0-19.4-8.7-19.4-19.4s5.2-17.8 15.5-20.7c27.8-7.8 56.2-13.6 97.8-13.6 64.9 0 127.6 16.1 177 45.5 8.1 4.8 11.3 11 11.3 19.7-.1 10.8-8.5 19.5-19.4 19.5zm31-76.2c-5.2 0-8.4-1.3-12.9-3.9-71.2-42.5-198.5-52.7-280.9-29.7-3.6 1-8.1 2.6-12.9 2.6-13.2 0-23.3-10.3-23.3-23.6 0-13.6 8.4-21.3 17.4-23.9 35.2-10.3 74.6-15.2 117.5-15.2 73 0 149.5 15.2 205.4 47.8 7.8 4.5 12.9 10.7 12.9 22.6 0 13.6-11 23.3-23.2 23.3z"/></svg>
diff --git a/src/web/frontend/src/components/ui/ImportModal.jsx b/src/web/frontend/src/components/ui/ImportModal.jsx
index c501e0da..a8aa382c 100644
--- a/src/web/frontend/src/components/ui/ImportModal.jsx
+++ b/src/web/frontend/src/components/ui/ImportModal.jsx
@@ -3,6 +3,7 @@ import { motion, AnimatePresence } from 'motion/react'
 import { importCustomPlaylist } from '../../lib/api'
 import listenbrainzIcon from '../../assets/listenbrainz.svg'
 import appleMusicIcon from '../../assets/apple-music.svg'
+import spotifyIcon from '../../assets/spotify.svg'
 
 const REFRESH_OPTIONS = [
   { value: 0,  label: 'Never' },
@@ -15,6 +16,7 @@ const REFRESH_OPTIONS = [
 const SOURCES = [
   { key: 'listenbrainz', label: 'ListenBrainz', icon: listenbrainzIcon, color: '#EB743B', placeholder: 'https://listenbrainz.org/playlist/\u2026' },
   { key: 'apple_music',  label: 'Apple Music',  icon: appleMusicIcon,  color: '#FA243C', placeholder: 'https://music.apple.com/us/playlist/\u2026' },
+  { key: 'spotify',      label: 'Spotify',      icon: spotifyIcon,     color: '#1ed760', placeholder: 'https://open.spotify.com/playlist/\u2026' },
 ]
 
 function CoverThumb({ src, index, onLoaded }) {
@@ -197,7 +199,7 @@ export function ImportModal({ onClose, onImported, onSync }) {
               </div>
 
               {/* Source buttons */}
-              <div className="px-5 pt-5 pb-5 grid grid-cols-2 gap-3">
+              <div className="px-5 pt-5 pb-5 grid grid-cols-3 gap-3">
                 {SOURCES.map(s => (
                   <button
                     key={s.key}
diff --git a/src/web/frontend/src/components/ui/PlaylistCard.jsx b/src/web/frontend/src/components/ui/PlaylistCard.jsx
index 92180d03..06fb2b10 100644
--- a/src/web/frontend/src/components/ui/PlaylistCard.jsx
+++ b/src/web/frontend/src/components/ui/PlaylistCard.jsx
@@ -272,11 +272,12 @@ const FALLBACK = {
   label: 'PLAYLIST',
 }
 
-// Color pool for user-imported custom playlists (cycled by colorIndex % 3)
+// Color pool for user-imported custom playlists (cycled by colorIndex % 4)
 const CUSTOM_PRESETS = [
   { background: cardGradient('#6366f1', '#8b5cf6', '#a78bfa'), accent: '#a78bfa' },
   { background: cardGradient('#0891b2', '#0e7490', '#67e8f9'), accent: '#67e8f9' },
   { background: cardGradient('#d97706', '#b45309', '#fcd34d'), accent: '#fcd34d' },
+  { background: cardGradient('#16a34a', '#15803d', '#4ade80'), accent: '#4ade80' },
 ]
 
 const SCHEDULE_DAYS = [

From 8266d2232c247bf4eb44a30aefa351271abbad60 Mon Sep 17 00:00:00 2001
From: dammitjeff <44111923+dammitjeff@users.noreply.github.com>
Date: Sat, 30 May 2026 18:43:32 -0700
Subject: [PATCH 2/3] Refactor track handling to use PlaylistTrack for better
 searches for spotify imports

---
 src/client/emby.go                  |  2 +-
 src/client/jellyfin.go              |  2 +-
 src/client/plex.go                  | 10 +++---
 src/client/subsonic.go              |  2 +-
 src/downloader/monitor.go           |  2 +-
 src/main/main.go                    | 15 +++++---
 src/util/sanitize.go                | 13 ++++++-
 src/web/backend/apple_music.go      | 16 ++++++---
 src/web/backend/custom_playlists.go | 13 +++----
 src/web/backend/playlists.go        | 54 +++++++++++++++++++----------
 src/web/backend/spotify.go          | 25 ++++++++-----
 11 files changed, 99 insertions(+), 55 deletions(-)

diff --git a/src/client/emby.go b/src/client/emby.go
index 58cb9cbe..4ae348f0 100644
--- a/src/client/emby.go
+++ b/src/client/emby.go
@@ -139,7 +139,7 @@ func (c *Emby) SearchSongs(tracks []*models.Track) error {
 		}
 
 		for _, item := range results.Items {
-			if strings.EqualFold(track.MainArtist, item.AlbumArtist) && (strings.EqualFold(item.Name, track.CleanTitle) || (track.File != "" && strings.Contains(strings.ToLower(item.Path), strings.ToLower(track.File)))) {
+			if strings.EqualFold(track.MainArtist, item.AlbumArtist) && (util.NormalizeTitle(item.Name) == util.NormalizeTitle(track.Title) || (track.File != "" && strings.Contains(strings.ToLower(item.Path), strings.ToLower(track.File)))) {
 				track.ID = item.ID
 				track.Present = true
 				break
diff --git a/src/client/jellyfin.go b/src/client/jellyfin.go
index e115940a..90a566b3 100644
--- a/src/client/jellyfin.go
+++ b/src/client/jellyfin.go
@@ -154,7 +154,7 @@ func (c *Jellyfin) SearchSongs(tracks []*models.Track) error {
 		}
 
 		for _, item := range results.Items {
-			if strings.EqualFold(track.MainArtist, item.AlbumArtist) && (strings.EqualFold(item.Name, track.CleanTitle) || (track.File != "" && strings.Contains(strings.ToLower(item.Path), strings.ToLower(track.File)))) {
+			if strings.EqualFold(track.MainArtist, item.AlbumArtist) && (util.NormalizeTitle(item.Name) == util.NormalizeTitle(track.Title) || (track.File != "" && strings.Contains(strings.ToLower(item.Path), strings.ToLower(track.File)))) {
 				track.ID = item.ID
 				track.Present = true
 				break
diff --git a/src/client/plex.go b/src/client/plex.go
index 701df83d..313cd4ed 100644
--- a/src/client/plex.go
+++ b/src/client/plex.go
@@ -390,13 +390,13 @@ func (c *Plex) SearchSongs(tracks []*models.Track) error {
 		}
 
 		if err != nil {
-			slog.Warn("search request failed for '%s': %s", track.Title, err.Error())
+			slog.Warn("search request failed", "title", track.Title, "err", err)
 			continue
 		}
 
 		var hubResults PlexHubSearch
 		if err := util.ParseResp(body, &hubResults); err != nil {
-			slog.Warn("failed to parse hub response for '%s': %s", track.Title, err.Error())
+			slog.Warn("failed to parse hub response", "title", track.Title, "err", err)
 			continue
 		}
 
@@ -412,7 +412,7 @@ func (c *Plex) SearchSongs(tracks []*models.Track) error {
 
 		key, err := getPlexSong(track, all)
 		if err != nil {
-			slog.Warn("failed to find match for '%s': %s", track.Title, err.Error())
+			slog.Warn("failed to find match", "title", track.Title, "err", err)
 			continue
 		}
 		if key != "" {
@@ -557,7 +557,7 @@ func getPlexSong(track *models.Track, metadata []SongMetadata) (string, error) {
 			continue
 		}
 
-		titleMatch := strings.EqualFold(md.Title, track.Title) || strings.EqualFold(md.Title, track.CleanTitle)
+		titleMatch := util.NormalizeTitle(md.Title) == util.NormalizeTitle(track.Title)
 		albumMatch := strings.EqualFold(md.ParentTitle, track.Album)
 		artistMatch := strings.Contains(strings.ToLower(md.OriginalTitle), loweredArtist) || strings.Contains(strings.ToLower(md.GrandparentTitle), loweredArtist)
 
@@ -590,7 +590,7 @@ func (c *Plex) addtoPlaylist(tracks []*models.Track) {
 			params := fmt.Sprintf("/playlists/%s/items?uri=server://%s/com.plexapp.plugins.library%s", c.Cfg.PlaylistID, c.machineID, track.ID)
 
 			if _, err := c.HttpClient.MakeRequest("PUT", c.Cfg.URL+params, nil, c.Cfg.Creds.Headers); err != nil {
-				slog.Warn("failed to add %s to playlist: %s", track.Title, err.Error())
+				slog.Warn("failed to add to playlist", "title", track.Title, "err", err)
 			}
 		}
 	}
diff --git a/src/client/subsonic.go b/src/client/subsonic.go
index 10523576..d733f56b 100644
--- a/src/client/subsonic.go
+++ b/src/client/subsonic.go
@@ -146,7 +146,7 @@ func (c *Subsonic) SearchSongs(tracks []*models.Track) error {
 
 		for _, song := range songs {
 			artistMatch := strings.Contains(strings.ToLower(song.Artist), strings.ToLower(track.MainArtist))
-			titleMatch := strings.EqualFold(song.Title, track.Title) || strings.EqualFold(song.Title, track.CleanTitle)
+			titleMatch := util.NormalizeTitle(song.Title) == util.NormalizeTitle(track.Title)
 			durationMatch := util.Abs(song.Duration - (track.Duration / 1000)) < 10
 			pathMatch := strings.Contains(strings.ToLower(song.Path), strings.ToLower(track.File))
 
diff --git a/src/downloader/monitor.go b/src/downloader/monitor.go
index 2952b4e2..42946bcc 100644
--- a/src/downloader/monitor.go
+++ b/src/downloader/monitor.go
@@ -131,7 +131,7 @@ func tracksProcessed(tracks []*models.Track, progressMap map[string]*DownloadMon
 		key := fmt.Sprintf("%s|%s", track.ID, track.File)
 		tracker, exists := progressMap[key]
 		if !track.Present && exists && !tracker.Skipped {
-			slog.Info("file still present", "file", track.File)
+			slog.Info("[monitor] track download still in progress", "title", track.CleanTitle, "artist", track.MainArtist, "file", track.File)
 			return false
 		}
 	}
diff --git a/src/main/main.go b/src/main/main.go
index 60b0d24a..e5d764d6 100644
--- a/src/main/main.go
+++ b/src/main/main.go
@@ -29,10 +29,11 @@ type Song struct {
 // models.Track slices, bypassing the LB discovery step entirely.
 func loadCustomTracks(dataDir, playlistID string) ([]*models.Track, string, error) {
 	type cachedTrack struct {
-		Title    string `json:"title"`
-		Artist   string `json:"artist"`
-		Release  string `json:"release"`
-		CoverURL string `json:"coverUrl"`
+		Title      string `json:"title"`
+		Artist     string `json:"artist"`
+		MainArtist string `json:"mainArtist"`
+		Release    string `json:"release"`
+		CoverURL   string `json:"coverUrl"`
 	}
 	type cacheFile struct {
 		Tracks []cachedTrack `json:"tracks"`
@@ -67,11 +68,15 @@ func loadCustomTracks(dataDir, playlistID string) ([]*models.Track, string, erro
 
 	tracks := make([]*models.Track, len(c.Tracks))
 	for i, t := range c.Tracks {
+		mainArtist := t.MainArtist
+		if mainArtist == "" {
+			mainArtist = t.Artist
+		}
 		tracks[i] = &models.Track{
 			CleanTitle: t.Title,
 			Title:      t.Title,
 			Artist:     t.Artist,
-			MainArtist: t.Artist,
+			MainArtist: mainArtist,
 			Album:      t.Release,
 			CoverURL:   t.CoverURL,
 		}
diff --git a/src/util/sanitize.go b/src/util/sanitize.go
index f2a94834..1bdf06a9 100644
--- a/src/util/sanitize.go
+++ b/src/util/sanitize.go
@@ -1,12 +1,23 @@
 package util
 
-import "regexp"
+import (
+	"regexp"
+	"strings"
+)
 
 var (
 	filenameRe = regexp.MustCompile(`[^\p{L}\d._,\-]+`)
 	alnumRe    = regexp.MustCompile(`[^\p{L}\d]+`)
+	featTailRe = regexp.MustCompile(`(?i)\s*[\(\[\{]\s*(feat\.?|featuring|ft\.?|with)\s[^\)\]\}]*[\)\]\}]\s*$`)
 )
 
+// NormalizeTitle strips trailing (feat. …) annotations, lowercases,
+// and reduces to alphanumeric-only for fuzzy title comparison.
+func NormalizeTitle(s string) string {
+	s = featTailRe.ReplaceAllString(s, "")
+	return AlnumOnly(strings.ToLower(s))
+}
+
 // FilenameSafe replaces characters unsafe for filenames with '_'
 func FilenameSafe(s string) string {
 	return filenameRe.ReplaceAllString(s, "_")
diff --git a/src/web/backend/apple_music.go b/src/web/backend/apple_music.go
index 8810f175..7f7f59ed 100644
--- a/src/web/backend/apple_music.go
+++ b/src/web/backend/apple_music.go
@@ -53,7 +53,7 @@ func resolveArtworkURL(tpl string) string {
 // fetchAppleMusicPlaylist scrapes a public Apple Music playlist page and extracts
 // track info from the embedded server data.
 // Returns (playlistName, artworkURL, tracks, error) where tracks are [title, artist, album, coverURL].
-func fetchAppleMusicPlaylist(pageURL string) (string, string, [][4]string, error) {
+func fetchAppleMusicPlaylist(pageURL string) (string, string, []PlaylistTrack, error) {
 	req, err := http.NewRequest("GET", pageURL, nil)
 	if err != nil {
 		return "", "", nil, fmt.Errorf("apple music: invalid URL: %w", err)
@@ -104,7 +104,7 @@ func fetchAppleMusicPlaylist(pageURL string) (string, string, [][4]string, error
 
 // extractServerData parses the <script id="serialized-server-data"> blob for
 // the playlist name, playlist artwork URL (from the header section), and tracks with artwork.
-func extractServerData(htmlStr string) (string, string, [][4]string, error) {
+func extractServerData(htmlStr string) (string, string, []PlaylistTrack, error) {
 	scripts := extractScriptByID(htmlStr, "serialized-server-data")
 	if len(scripts) == 0 {
 		return "", "", nil, fmt.Errorf("apple music: no serialized-server-data found in page")
@@ -117,7 +117,7 @@ func extractServerData(htmlStr string) (string, string, [][4]string, error) {
 
 	var playlistName string
 	var artworkURL string
-	var tracks [][4]string
+	var tracks []PlaylistTrack
 
 	for _, outer := range ssd.Data {
 		for _, sec := range outer.Data.Sections {
@@ -144,7 +144,7 @@ func extractServerData(htmlStr string) (string, string, [][4]string, error) {
 			}
 
 			// Track section.
-			tracks = make([][4]string, 0, len(sec.Items))
+			tracks = make([]PlaylistTrack, 0, len(sec.Items))
 			for _, item := range sec.Items {
 				album := ""
 				if len(item.TertiaryLinks) > 0 {
@@ -154,7 +154,13 @@ func extractServerData(htmlStr string) (string, string, [][4]string, error) {
 				if item.Artwork != nil {
 					coverURL = resolveArtworkURL(item.Artwork.Dictionary.URL)
 				}
-				tracks = append(tracks, [4]string{item.Title, item.ArtistName, album, coverURL})
+				tracks = append(tracks, PlaylistTrack{
+					Title:      item.Title,
+					Artist:     item.ArtistName,
+					MainArtist: item.ArtistName,
+					Album:      album,
+					CoverURL:   coverURL,
+				})
 			}
 		}
 	}
diff --git a/src/web/backend/custom_playlists.go b/src/web/backend/custom_playlists.go
index f1914e75..205f2dfd 100644
--- a/src/web/backend/custom_playlists.go
+++ b/src/web/backend/custom_playlists.go
@@ -127,7 +127,7 @@ func saveCustomPlaylists(cfgDir string, playlists []CustomPlaylist) error {
 type FetchResult struct {
 	Name       string
 	ArtworkURL string
-	Tracks     [][4]string
+	Tracks     []PlaylistTrack
 }
 
 // fetchCustomPlaylistTracks dispatches to the appropriate source fetcher.
@@ -157,10 +157,7 @@ func fetchCustomPlaylistTracks(p CustomPlaylist) (FetchResult, error) {
 		if err != nil {
 			return FetchResult{}, err
 		}
-		tracks := make([][4]string, len(modelTracks))
-		for i, t := range modelTracks {
-			tracks[i] = [4]string{t.CleanTitle, t.Artist, t.Album, t.CoverURL}
-		}
+		tracks := modelTracksToPlaylistTracks(modelTracks)
 		return FetchResult{Name: name, Tracks: tracks}, nil
 	}
 }
@@ -352,9 +349,9 @@ func (s *Server) handleImportCustomPlaylist(w http.ResponseWriter, r *http.Reque
 	seen := make(map[string]bool)
 	covers := make([]string, 0, 6)
 	for _, t := range tracks {
-		if t[3] != "" && !seen[t[3]] {
-			seen[t[3]] = true
-			covers = append(covers, t[3])
+		if t.CoverURL != "" && !seen[t.CoverURL] {
+			seen[t.CoverURL] = true
+			covers = append(covers, t.CoverURL)
 		}
 		if len(covers) >= 6 {
 			break
diff --git a/src/web/backend/playlists.go b/src/web/backend/playlists.go
index 267f0fc5..a427aa1d 100644
--- a/src/web/backend/playlists.go
+++ b/src/web/backend/playlists.go
@@ -21,6 +21,17 @@ import (
 
 const lbAPIBase = "https://api.listenbrainz.org/1"
 
+// PlaylistTrack represents a single track fetched from any playlist source.
+// Replaces the raw [][4]string{title, artist, album, coverURL} pattern
+// with named fields and adds MainArtist for accurate matching in music servers.
+type PlaylistTrack struct {
+	Title      string
+	Artist     string
+	MainArtist string
+	Album      string
+	CoverURL   string
+}
+
 // validPlaylistTypes is derived from playlistDefs — no manual sync needed.
 var validPlaylistTypes = func() map[string]bool {
 	m := make(map[string]bool, len(playlistDefs))
@@ -65,26 +76,32 @@ func (s *Server) handleGetPlaylist(w http.ResponseWriter, r *http.Request) {
 
 // ── LB fallback ──────────────────────────────────────────────────────────────
 
-func fetchOnRepeatTracks(username string) ([][4]string, error) {
+func fetchOnRepeatTracks(username string) ([]PlaylistTrack, error) {
 	tracks, err := discovery.FetchTopRecordings(util.NewHttp(util.HttpClientConfig{Timeout: 30}), username)
 	if err != nil {
 		return nil, err
 	}
-	return modelTracksTo4Strings(tracks), nil
+	return modelTracksToPlaylistTracks(tracks), nil
 }
 
-func fetchMostRecentLBPlaylist(username, playlistType string) ([][4]string, error) {
+func fetchMostRecentLBPlaylist(username, playlistType string) ([]PlaylistTrack, error) {
 	tracks, err := discovery.FetchMostRecentPlaylistByType(util.NewHttp(util.HttpClientConfig{Timeout: 30}), username, playlistType)
 	if err != nil {
 		return nil, err
 	}
-	return modelTracksTo4Strings(tracks), nil
+	return modelTracksToPlaylistTracks(tracks), nil
 }
 
-func modelTracksTo4Strings(tracks []*models.Track) [][4]string {
-	out := make([][4]string, len(tracks))
+func modelTracksToPlaylistTracks(tracks []*models.Track) []PlaylistTrack {
+	out := make([]PlaylistTrack, len(tracks))
 	for i, t := range tracks {
-		out[i] = [4]string{t.CleanTitle, t.Artist, t.Album, t.CoverURL}
+		out[i] = PlaylistTrack{
+			Title:      t.CleanTitle,
+			Artist:     t.Artist,
+			MainArtist: t.MainArtist,
+			Album:      t.Album,
+			CoverURL:   t.CoverURL,
+		}
 	}
 	return out
 }
@@ -191,7 +208,7 @@ func (s *Server) handlePrefetchCovers(w http.ResponseWriter, r *http.Request) {
 				slog.Info("prefetch: cache already exists, skipping", "playlist", pt)
 				continue
 			}
-			var tracks [][4]string
+			var tracks []PlaylistTrack
 			var err error
 			if pt == "on-repeat" {
 				tracks, err = fetchOnRepeatTracks(body.User)
@@ -209,19 +226,20 @@ func (s *Server) handlePrefetchCovers(w http.ResponseWriter, r *http.Request) {
 }
 
 type cachedPrefetchTrack struct {
-	Rank     int    `json:"rank"`
-	Title    string `json:"title"`
-	Artist   string `json:"artist"`
-	Release  string `json:"release"`
-	CoverURL string `json:"coverUrl,omitempty"`
+	Rank       int    `json:"rank"`
+	Title      string `json:"title"`
+	Artist     string `json:"artist"`
+	MainArtist string `json:"mainArtist,omitempty"`
+	Release    string `json:"release"`
+	CoverURL   string `json:"coverUrl,omitempty"`
 }
 
 // writePreliminaryCache writes the track cache with remote cover URLs immediately.
 // Returns false if the write fails.
-func writePreliminaryCache(cfgDir, playlistType string, tracks [][4]string) bool {
+func writePreliminaryCache(cfgDir, playlistType string, tracks []PlaylistTrack) bool {
 	ct := make([]cachedPrefetchTrack, len(tracks))
 	for i, t := range tracks {
-		ct[i] = cachedPrefetchTrack{Rank: i + 1, Title: t[0], Artist: t[1], Release: t[2], CoverURL: t[3]}
+		ct[i] = cachedPrefetchTrack{Rank: i + 1, Title: t.Title, Artist: t.Artist, MainArtist: t.MainArtist, Release: t.Album, CoverURL: t.CoverURL}
 	}
 	if !writeTrackCache(cfgDir, playlistType, ct) {
 		return false
@@ -232,7 +250,7 @@ func writePreliminaryCache(cfgDir, playlistType string, tracks [][4]string) bool
 
 // downloadAndCacheCovers downloads cover art and rewrites the cache with local URLs.
 // Safe to call in a goroutine.
-func downloadAndCacheCovers(cfgDir, playlistType string, tracks [][4]string) {
+func downloadAndCacheCovers(cfgDir, playlistType string, tracks []PlaylistTrack) {
 	coversDir := filepath.Join(cfgDir, "cache", "covers")
 	if err := os.MkdirAll(coversDir, 0755); err != nil {
 		slog.Error("prefetch: failed to create covers dir", "err", err.Error())
@@ -240,14 +258,14 @@ func downloadAndCacheCovers(cfgDir, playlistType string, tracks [][4]string) {
 	}
 	ct := make([]cachedPrefetchTrack, len(tracks))
 	for i, t := range tracks {
-		ct[i] = cachedPrefetchTrack{Rank: i + 1, Title: t[0], Artist: t[1], Release: t[2], CoverURL: util.DownloadCover(t[3], coversDir)}
+		ct[i] = cachedPrefetchTrack{Rank: i + 1, Title: t.Title, Artist: t.Artist, MainArtist: t.MainArtist, Release: t.Album, CoverURL: util.DownloadCover(t.CoverURL, coversDir)}
 	}
 	if writeTrackCache(cfgDir, playlistType, ct) {
 		slog.Info("prefetch: cache updated", "playlist", playlistType, "covers", "local")
 	}
 }
 
-func writePrefetchCache(cfgDir, playlistType string, tracks [][4]string) {
+func writePrefetchCache(cfgDir, playlistType string, tracks []PlaylistTrack) {
 	if !writePreliminaryCache(cfgDir, playlistType, tracks) {
 		return
 	}
diff --git a/src/web/backend/spotify.go b/src/web/backend/spotify.go
index e3570391..202e9029 100644
--- a/src/web/backend/spotify.go
+++ b/src/web/backend/spotify.go
@@ -561,7 +561,7 @@ type partnerTrackData struct {
 // fetchSpotifyPlaylist fetches a public Spotify playlist via the internal
 // partner API (api-partner.spotify.com). Retries once with a fresh session
 // on failure. Returns playlist name, artwork URL, and normalized tracks.
-func fetchSpotifyPlaylist(playlistURL string) (string, string, [][4]string, error) {
+func fetchSpotifyPlaylist(playlistURL string) (string, string, []PlaylistTrack, error) {
 	id, err := extractSpotifyID(playlistURL)
 	if err != nil {
 		return "", "", nil, err
@@ -584,7 +584,7 @@ func fetchSpotifyPlaylist(playlistURL string) (string, string, [][4]string, erro
 	return name, artwork, tracks, nil
 }
 
-func fetchPlaylistByID(id string) (string, string, [][4]string, error) {
+func fetchPlaylistByID(id string) (string, string, []PlaylistTrack, error) {
 	if err := spSession.ensure(); err != nil {
 		return "", "", nil, err
 	}
@@ -674,8 +674,8 @@ func queryPartnerAPI(playlistID string, offset, limit int) (*partnerPlaylistResp
 
 // ── Track extraction helpers ────────────────────────────────────────────────
 
-func extractTracks(items []partnerItem) [][4]string {
-	tracks := make([][4]string, 0, len(items))
+func extractTracks(items []partnerItem) []PlaylistTrack {
+	tracks := make([]PlaylistTrack, 0, len(items))
 	for _, item := range items {
 		t := item.ItemV2.Data
 		if t.Name == "" {
@@ -689,16 +689,23 @@ func extractTracks(items []partnerItem) [][4]string {
 			}
 		}
 
+		fullArtist := strings.Join(artists, ", ")
+		mainArtist := fullArtist
+		if len(artists) > 0 {
+			mainArtist = artists[0]
+		}
+
 		coverURL := ""
 		if len(t.AlbumOfTrack.CoverArt.Sources) > 0 {
 			coverURL = pickBestSource(t.AlbumOfTrack.CoverArt.Sources, 300)
 		}
 
-		tracks = append(tracks, [4]string{
-			t.Name,
-			strings.Join(artists, ", "),
-			t.AlbumOfTrack.Name,
-			coverURL,
+		tracks = append(tracks, PlaylistTrack{
+			Title:      t.Name,
+			Artist:     fullArtist,
+			MainArtist: mainArtist,
+			Album:      t.AlbumOfTrack.Name,
+			CoverURL:   coverURL,
 		})
 	}
 	return tracks

From a1290dc307525bfbf12a017df62ce298c5b7184c Mon Sep 17 00:00:00 2001
From: dammitjeff <44111923+dammitjeff@users.noreply.github.com>
Date: Sat, 30 May 2026 18:48:59 -0700
Subject: [PATCH 3/3] Add CleanSearchTitle

---
 src/client/emby.go     |  2 +-
 src/client/jellyfin.go |  2 +-
 src/client/plex.go     |  8 ++++----
 src/client/subsonic.go |  2 +-
 src/util/sanitize.go   | 16 +++++++++++++---
 5 files changed, 20 insertions(+), 10 deletions(-)

diff --git a/src/client/emby.go b/src/client/emby.go
index 4ae348f0..07af57b4 100644
--- a/src/client/emby.go
+++ b/src/client/emby.go
@@ -126,7 +126,7 @@ func (c *Emby) CheckRefreshState() bool {
 
 func (c *Emby) SearchSongs(tracks []*models.Track) error {
 	for _, track := range tracks {
-		reqParam := fmt.Sprintf("/emby/Items?IncludeMediaTypes=Audio&SearchTerm=%s&Recursive=true&Fields=Path", url.QueryEscape(track.CleanTitle))
+		reqParam := fmt.Sprintf("/emby/Items?IncludeMediaTypes=Audio&SearchTerm=%s&Recursive=true&Fields=Path", url.QueryEscape(util.CleanSearchTitle(track.CleanTitle)))
 
 		body, err := c.HttpClient.MakeRequest("GET", c.Cfg.URL+reqParam, nil, c.Cfg.Creds.Headers)
 		if err != nil {
diff --git a/src/client/jellyfin.go b/src/client/jellyfin.go
index 90a566b3..c268260f 100644
--- a/src/client/jellyfin.go
+++ b/src/client/jellyfin.go
@@ -141,7 +141,7 @@ func (c *Jellyfin) CheckRefreshState() bool {
 
 func (c *Jellyfin) SearchSongs(tracks []*models.Track) error {
 	for _, track := range tracks {
-		reqParam := fmt.Sprintf("/Items?IncludeMediaTypes=Audio&SearchTerm=%s&Recursive=true&Fields=Path", url.QueryEscape(track.CleanTitle))
+		reqParam := fmt.Sprintf("/Items?IncludeMediaTypes=Audio&SearchTerm=%s&Recursive=true&Fields=Path", url.QueryEscape(util.CleanSearchTitle(track.CleanTitle)))
 
 		body, err := c.HttpClient.MakeRequest("GET", c.Cfg.URL+reqParam, nil, c.Cfg.Creds.Headers)
 		if err != nil {
diff --git a/src/client/plex.go b/src/client/plex.go
index 313cd4ed..f5231c0b 100644
--- a/src/client/plex.go
+++ b/src/client/plex.go
@@ -367,7 +367,7 @@ func (c *Plex) SearchSongs(tracks []*models.Track) error {
 	for _, track := range tracks {
 		params := fmt.Sprintf(
 			"/hubs/search?query=%s&limit=10",
-			url.QueryEscape(track.CleanTitle),
+			url.QueryEscape(util.CleanSearchTitle(track.CleanTitle)),
 		)
 
 		var body []byte
@@ -550,7 +550,7 @@ func (c *Plex) getServer() error {
 }
 
 func getPlexSong(track *models.Track, metadata []SongMetadata) (string, error) {
-	loweredArtist := strings.ToLower(track.MainArtist)
+	normArtist := util.AlnumOnly(strings.ToLower(track.MainArtist))
 
 	for _, md := range metadata {
 		if md.Type != "track" {
@@ -558,8 +558,8 @@ func getPlexSong(track *models.Track, metadata []SongMetadata) (string, error) {
 		}
 
 		titleMatch := util.NormalizeTitle(md.Title) == util.NormalizeTitle(track.Title)
-		albumMatch := strings.EqualFold(md.ParentTitle, track.Album)
-		artistMatch := strings.Contains(strings.ToLower(md.OriginalTitle), loweredArtist) || strings.Contains(strings.ToLower(md.GrandparentTitle), loweredArtist)
+		albumMatch := util.AlnumOnly(strings.ToLower(md.ParentTitle)) == util.AlnumOnly(strings.ToLower(track.Album))
+		artistMatch := strings.Contains(util.AlnumOnly(strings.ToLower(md.OriginalTitle)), normArtist) || strings.Contains(util.AlnumOnly(strings.ToLower(md.GrandparentTitle)), normArtist)
 
 		if titleMatch && (albumMatch || artistMatch) {
 			slog.Debug(fmt.Sprintf("matched track via metadata: %s by %s", track.Title, track.Artist))
diff --git a/src/client/subsonic.go b/src/client/subsonic.go
index d733f56b..08c17898 100644
--- a/src/client/subsonic.go
+++ b/src/client/subsonic.go
@@ -125,7 +125,7 @@ func (c *Subsonic) AddLibrary() error {
 
 func (c *Subsonic) SearchSongs(tracks []*models.Track) error {
 	for _, track := range tracks {
-		searchQuery := fmt.Sprintf("%s %s", track.CleanTitle, track.MainArtist)
+		searchQuery := fmt.Sprintf("%s %s", util.CleanSearchTitle(track.CleanTitle), track.MainArtist)
 		reqParam := fmt.Sprintf("search3?query=%s&f=json", url.QueryEscape(searchQuery))
 
 		body, err := c.subsonicRequest(reqParam)
diff --git a/src/util/sanitize.go b/src/util/sanitize.go
index 1bdf06a9..a16e9878 100644
--- a/src/util/sanitize.go
+++ b/src/util/sanitize.go
@@ -6,15 +6,25 @@ import (
 )
 
 var (
-	filenameRe = regexp.MustCompile(`[^\p{L}\d._,\-]+`)
-	alnumRe    = regexp.MustCompile(`[^\p{L}\d]+`)
-	featTailRe = regexp.MustCompile(`(?i)\s*[\(\[\{]\s*(feat\.?|featuring|ft\.?|with)\s[^\)\]\}]*[\)\]\}]\s*$`)
+	filenameRe    = regexp.MustCompile(`[^\p{L}\d._,\-]+`)
+	alnumRe       = regexp.MustCompile(`[^\p{L}\d]+`)
+	featTailRe    = regexp.MustCompile(`(?i)\s*[\(\[\{]\s*(feat\.?|featuring|ft\.?|with)\s[^\)\]\}]*[\)\]\}]\s*$`)
+	remasterTailRe = regexp.MustCompile(`(?i)\s*[-–—]\s*\d{4}\s*remaster(ed)?\s*$`)
 )
 
+// CleanSearchTitle strips trailing (feat. …) and "- 2011 Remaster" suffixes
+// but keeps the title human-readable for use in search API queries.
+func CleanSearchTitle(s string) string {
+	s = featTailRe.ReplaceAllString(s, "")
+	s = remasterTailRe.ReplaceAllString(s, "")
+	return strings.TrimSpace(s)
+}
+
 // NormalizeTitle strips trailing (feat. …) annotations, lowercases,
 // and reduces to alphanumeric-only for fuzzy title comparison.
 func NormalizeTitle(s string) string {
 	s = featTailRe.ReplaceAllString(s, "")
+	s = remasterTailRe.ReplaceAllString(s, "")
 	return AlnumOnly(strings.ToLower(s))
 }