Closed Bug 235346 Opened 21 years ago Closed 21 years ago

HTTP authentication cannot be cancelled ?

Categories

(Toolkit :: Password Manager, defect)

Product:
Toolkit
Component:
Password Manager
Platform:
x86
Windows XP
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED DUPLICATE of bug 55181

People

(Reporter: ebcom, Assigned: bryner)

Details

User-Agent:       
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.6) Gecko/20040206 Firefox/0.8

Whichever option is given to the password manager, it seems impossible to clean
up the http authentication of a session.

Firefox (and I guess Mozilla ?) needs to be -closed- in order to clean up the
HTTP authentication credentials.

This is a problem since several tabs may be used in Firefox, and that one may
not want to close and loose all his browsed document to start a new HTTP
authentication against a server (as HTTP authentication credentials are shared
among all tabs, closing and opening another tab does not help)

Moreover, these credentials may be sensitive information and should be cleared
whenever the user selects 'clean password information', shouldn't it ?


Reproducible: Always
Steps to Reproduce:
1.
2.
3.

Actual Results:  
HTTP credentials cannot be cleaned up if FireFox is not closed

Expected Results:  
Sonething (password manager seems a good candidate) to clean up these
credentials on user's request
There is an extension that clears HTTP auth.
http://www.mmcc.cx/mozilla/

To do what you are seeking innately is bug 55181.

*** This bug has been marked as a duplicate of 55181 ***
Status: UNCONFIRMED → RESOLVED
Closed: 21 years ago
Resolution: --- → DUPLICATE
Product: Firefox → Toolkit
You need to log in before you can comment on or make changes to this bug.