Website with multiple HTTP authentication links

RESOLVED INVALID

Status

()

Firefox
Untriaged
RESOLVED INVALID
3 years ago
3 years ago

People

(Reporter: u502197, Unassigned)

Tracking

40 Branch
Points:
---

Firefox Tracking Flags

(Not tracked)

Details

(Reporter)

Description

3 years ago
User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.0
Build ID: 20150826023504

Steps to reproduce:

I access a website with basic http authentication, that has links to other sites with their own basic http authentication.


Actual results:

Firefox asks for username/password only with the first authentication, but doesn't ask for authentication when clicking any link to other sites/realms. It shows http error 401 for these sites. Using developer tools I can see firefox doesn't send the auth header in this last link (Firefox hasn't asked for auth, so from this point of view it's OK. It's not mixing credentials between sites)


Expected results:

Firefox should ask for username/password with each new url/realm accessed, after receiving http error 401. Previous versions of firefox did it.
The sequence should be:
- I click in new site/realm
- Firefox receives http error 401 from the site
- Firefox asks for auth
- Firefox requests again the previous url, with the correct auth header
(Reporter)

Comment 1

3 years ago
I checked with Firefox Developer Edition and it works as expected, so in future releases it will work fine again.
Status: UNCONFIRMED → RESOLVED
Last Resolved: 3 years ago
Resolution: --- → INVALID
You need to log in before you can comment on or make changes to this bug.