For sysPass authorization it could be possible to use several methods:

The Auth Basic authorization could be enabled through the configuration module, so if the HTTP authorization header with the user’s data is sent, it will be checked whether the sysPass user’s login matches against the Auth Basic one.

The 2FA authorization, through the Authenticator Plugin, is done by generating an OTP token from Google Authenticator or similar applications. This authorization could be enabled from the user’s preferences.