Closed Bug 1202043 Opened 9 years ago Closed 9 years ago

Website with multiple HTTP authentication links

Categories

(Firefox :: Untriaged, defect)

Product:
Firefox
Component:
Untriaged
Version:
40 Branch
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED INVALID

People

(Reporter: u502197, Unassigned)

Details

User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.0
Build ID: 20150826023504

Steps to reproduce:

I access a website with basic http authentication, that has links to other sites with their own basic http authentication.


Actual results:

Firefox asks for username/password only with the first authentication, but doesn't ask for authentication when clicking any link to other sites/realms. It shows http error 401 for these sites. Using developer tools I can see firefox doesn't send the auth header in this last link (Firefox hasn't asked for auth, so from this point of view it's OK. It's not mixing credentials between sites)


Expected results:

Firefox should ask for username/password with each new url/realm accessed, after receiving http error 401. Previous versions of firefox did it.
The sequence should be:
- I click in new site/realm
- Firefox receives http error 401 from the site
- Firefox asks for auth
- Firefox requests again the previous url, with the correct auth header
I checked with Firefox Developer Edition and it works as expected, so in future releases it will work fine again.
Status: UNCONFIRMED → RESOLVED
Closed: 9 years ago
Resolution: --- → INVALID
You need to log in before you can comment on or make changes to this bug.