Closed Bug 173376 Opened 23 years ago Closed 22 years ago

embedders need access to necko's HTTP auth cache

Categories

(Core :: Networking: HTTP, defect, P2)

Product:
Core
Component:
Networking: HTTP
Type:
defect

Tracking

()

Status:
RESOLVED FIXED
Milestone:
mozilla1.4alpha

People

(Reporter: darin.moz, Assigned: darin.moz)

References

Details

(Keywords: arch, topembed+)

embedders need access to necko's HTTP auth cache. see related bug 60304, which contains a proposed XPCOM interface. since this is something we'll have to freeze quickly, we might want to come up with something specifically for the Java plugin.
Severity: normal → major
Status: NEW → ASSIGNED
Keywords: arch, mozilla1.2, nsbeta1, topembed
Priority: -- → P2
Target Milestone: --- → mozilla1.2beta
Blocks: 60304
Re attachment 102817 [details]: Why http-specific? ftp has auth, too. Even if it doeesn't support an auth cache, I don't see why this has to be part of http by design, even if the implementation is done that way to start with. Besides, isn't the wallet stuff already frozen? Can't sun use that? We already have an nsIPassword.idl in there
sun can't use wallet because that would still result in a two auth dialogs if the java plugin needed auth credentials for a site before necko. now that could change if necko didn't pop-up prefilled auth dialogs, but that behavior is probably not going to change. good point about being protocol agnostic. i'll give that some more thought. we may want to expose some of the RFC 2617 specific things like sending auth credentials based on the URL path. hmm...
I get this icky feeling about embedders using parts of our networking stuff. Getting access to this info isn't going to help if the webserver using an auth method which we support by java doesn't (eg digest auth), or even the other way arround (does java support NTLM auth) Theres another bug somewhere on making the http auth cache stuff more generic. If we did that, then the sun stuff could do the get/put stuff via that interface, and so could the mozilla http stuff. That way things wouldn't have to ask for this twice. If we do do this, though, somone should make sure that the phoenix replacement for wallet supports this interface :)
java only supports Basic auth; that's why it will be necessary to pass the auth scheme through this interface. i'm really thinking of making this two-level. we can introduce a simplified interface for the java plugin only, which will be frozen soon. later on we can develop a richer interface to necko's HTTP auth cache.
It is true right now, but may not for long. We get a lot of escalations for NTLM support, and network/security teams already have it ready. So it is just a decision away for NTML support.
interesting. well, that means we should include username:password:domain for this interface.
I just think we should create/freeze this when its ready, rather than have a frozen interface which we then have to support forever.
the java plugin needed this 2 years ago. i think we should move forward and provide something stable on which java and other plugins will benefit from.
looks like this isn't going to happen by mozilla 1.2; moving out to mozilla 1.3 alpha.
Target Milestone: mozilla1.2beta → mozilla1.3alpha
Keywords: topembedtopembed+
Target Milestone: mozilla1.3alpha → mozilla1.3beta
QA Contact: httpqa → tever
Target Milestone: mozilla1.3beta → mozilla1.4alpha
*** Bug 74171 has been marked as a duplicate of this bug. ***
nsIHttpAuthManager was introduced by the fix for bug 60304. marking this bug resolved FIXED.
Status: ASSIGNED → RESOLVED
Closed: 22 years ago
Resolution: --- → FIXED
whitebox
QA Contact: tever → ashishbhatt
You need to log in before you can comment on or make changes to this bug.