cURL / Mailing Lists / curl-users / Single Mail

curl-users

User Authentication on/off

From: Daniel Stenberg <daniel_at_haxx.se>
Date: Mon, 19 Mar 2001 15:28:38 +0100 (MET)

Curl has two ways of enabling HTTP basic user authentication:

A) curl -u user:password http://host.com

Now, imagine that the site sends a redirect to another absolute URL (without
user+password in the URL of course) and we tell curl to follow that Location:
header.

What should curl do with the authentication data in the second request?

How does curl do today?

o 7.6.1 => crashes

o 7.7-beta => behaves differently, depending on that method you're using:
   A) passes the authentication on both requests
   B) extracts the info on a per-request basis, so the first request uses the
      authentication and the second page will be fetched without it.

Of course, nothing of this is actually documented anywhere! B-]

-- 
  Daniel Stenberg -- curl project maintainer -- http://curl.haxx.se/

Received on 2001-03-19

This message: [ Message body ]
Next message: Georg Horn: "Re: Curl::easy"
Previous message: noreply_at_sourceforge.net: "[ curl-Bugs-409696 ] basic auth info not sent on redirect"
Next in thread: Kevin P Roth: "Re: User Authentication on/off"
Maybe reply: Kevin P Roth: "Re: User Authentication on/off"
Reply: SM: "Re: User Authentication on/off"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]