diff --git a/src/widgets/freshrss/component.jsx b/src/widgets/freshrss/component.jsx
index ee4daf18..9381beb1 100644
--- a/src/widgets/freshrss/component.jsx
+++ b/src/widgets/freshrss/component.jsx
@@ -9,17 +9,13 @@ export default function Component({ service }) {
 
   const { widget } = service;
 
-  const { data: subscriptionsData, error: subscriptionsError } = useWidgetAPI(widget, "subscriptions");
-  const { data: unreadData, error: unreadError } = useWidgetAPI(widget, "unread");
+  const { data: freshrssData, error: freshrssError } = useWidgetAPI(widget, "info");
 
-  if (subscriptionsError) {
-    return <Container error={subscriptionsError} />;
-  }
-  if (unreadError) {
-    return <Container error={unreadError} />;
+  if (freshrssError) {
+    return <Container error={freshrssError} />;
   }
 
-  if (!subscriptionsData || !unreadData) {
+  if (!freshrssData) {
     return (
       <Container service={service}>
         <Block label="freshrss.unread" />
@@ -30,8 +26,8 @@ export default function Component({ service }) {
 
   return (
     <Container service={service}>
-      <Block label="freshrss.unread" value={t("common.number", { value: unreadData.count })} />
-      <Block label="freshrss.subscriptions" value={t("common.number", { value: subscriptionsData.count })} />
+      <Block label="freshrss.unread" value={t("common.number", { value: freshrssData.unread })} />
+      <Block label="freshrss.subscriptions" value={t("common.number", { value: freshrssData.subscriptions })} />
     </Container>
   );
 }
diff --git a/src/widgets/freshrss/proxy.js b/src/widgets/freshrss/proxy.js
new file mode 100644
index 00000000..203f2ed6
--- /dev/null
+++ b/src/widgets/freshrss/proxy.js
@@ -0,0 +1,97 @@
+import cache from "memory-cache";
+
+import { httpProxy } from "utils/proxy/http";
+import { formatApiCall } from "utils/proxy/api-helpers";
+import getServiceWidget from "utils/config/service-helpers";
+import createLogger from "utils/logger";
+import widgets from "widgets/widgets";
+
+const proxyName = "freshrssProxyHandler";
+const sessionTokenCacheKey = `${proxyName}__sessionToken`;
+const logger = createLogger(proxyName);
+
+async function login(widget, service) {
+  const endpoint = "accounts/ClientLogin";
+  const api = widgets?.[widget.type]?.api
+  const loginUrl = new URL(formatApiCall(api, { endpoint, ...widget }));
+  const headers = { "Content-Type": "application/x-www-form-urlencoded" };
+
+  const [, , data,] = await httpProxy(loginUrl, {
+    method: "POST",
+    body: new URLSearchParams({
+      Email: widget.username,
+      Passwd: widget.password
+    }).toString(),
+    headers,
+  });
+
+  try {
+    const [, token] = data.toString().split("\n").find(line => line.startsWith("Auth=")).split("=")
+    cache.put(`${sessionTokenCacheKey}.${service}`, token, 30 * 60 * 1000); // 30m
+    return { token };
+  } catch (e) {
+    logger.error("Unable to login to FreshRSS API: %s", e);
+  }
+
+  return { token: false };
+}
+
+async function apiCall(widget, endpoint, service) {
+  const key = `${sessionTokenCacheKey}.${service}`;
+  const headers = {
+    "Authorization": `GoogleLogin auth=${cache.get(key)}`,
+  }
+  const url = new URL(formatApiCall(widgets[widget.type].api, { endpoint, ...widget }));
+  const method = "GET";
+
+  let [status, contentType, data, responseHeaders] = await httpProxy(url, {
+    method,
+    headers,
+  });
+
+  if (status === 401) {
+    logger.debug("FreshRSS API rejected the request, attempting to obtain new session token");
+    const { token } = await login(widget, service);
+    headers.Authorization = `GoogleLogin auth=${token}`;
+
+    // retry the request, now with the new session token
+    [status, contentType, data, responseHeaders] = await httpProxy(url, {
+      method,
+      headers,
+    });
+  }
+
+  if (status !== 200) {
+    logger.error("Error getting data from FreshRSS: %s status %d. Data: %s", url, status, data);
+    return { status, contentType, data: null, responseHeaders };
+  }
+
+  return { status, contentType, data: JSON.parse(data.toString()), responseHeaders };
+}
+
+export default async function freshrssProxyHandler(req, res) {
+  const { group, service } = req.query;
+
+  if (!group || !service) {
+    logger.debug("Invalid or missing service '%s' or group '%s'", service, group);
+    return res.status(400).json({ error: "Invalid proxy service type" });
+  }
+
+  const widget = await getServiceWidget(group, service);
+  if (!widget) {
+    logger.debug("Invalid or missing widget for service '%s' in group '%s'", service, group);
+    return res.status(400).json({ error: "Invalid proxy service type" });
+  }
+
+  if (!cache.get(`${sessionTokenCacheKey}.${service}`)) {
+    await login(widget, service);
+  }
+
+  const { data: subscriptionData } = await apiCall(widget, "reader/api/0/subscription/list", service);
+  const { data: unreadCountData } = await apiCall(widget, "reader/api/0/unread-count", service);
+
+  return res.status(200).send({
+    subscriptions: subscriptionData?.subscriptions.length,
+    unread: unreadCountData?.max
+  });
+}
diff --git a/src/widgets/freshrss/widget.js b/src/widgets/freshrss/widget.js
index ea87fa38..2e025762 100644
--- a/src/widgets/freshrss/widget.js
+++ b/src/widgets/freshrss/widget.js
@@ -1,22 +1,11 @@
-import { asJson } from "utils/proxy/api-helpers";
-import credentialedProxyHandler from "utils/proxy/handlers/credentialed";
+import freshrssProxyHandler from "./proxy";
 
 const widget = {
   api: "{url}/api/greader.php/{endpoint}?output=json",
-  proxyHandler: credentialedProxyHandler,
-
+  proxyHandler: freshrssProxyHandler,
   mappings: {
-    subscriptions: {
-      endpoint: "reader/api/0/subscription/list",
-      map: (data) => ({
-        count: asJson(data).subscriptions.length
-      }),
-    },
-    unread: {
-      endpoint: "reader/api/0/unread-count",
-      map: (data) => ({
-        count: asJson(data).max
-      }),
+    info: {
+      endpoint: "/"
     }
   }
 };