Devtools inspect the element triggers requests which pop .htaccess password prompts even though a password was recently provided
Categories
(DevTools :: Inspector, defect, P3)
Tracking
(firefox-esr115 affected, firefox121 affected, firefox122 affected, firefox123 affected)
People
(Reporter: eoin, Unassigned, NeedInfo)
References
Details
User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:120.0) Gecko/20100101 Firefox/120.0
Steps to reproduce:
I use a website which is protected by .htaccess password.
I enter the user/password that I need to access it.
The website works fine.
I then inspect an element.
I am asked for the password again.
Actual results:
I was asked for the user/password when inspecting an element.
Expected results:
Browser allows the user/pass to be cached to enjoy normal usage of the website for a set period of time.
|
||
Comment 1•11 months ago
|
||
The Bugbug bot thinks this bug should belong to the 'Toolkit::Password Manager' component, and is moving the bug to that component. Please correct in case you think the bot is wrong.
|
|
||
Comment 2•10 months ago
|
||
The severity field is not set for this bug.
:serg, could you have a look please?
For more information, please visit BugBot documentation.
This was updated to password manager, but it's not related. For clarity, I don't use the password manager. It's simply that I get asked for the password for the website again very quickly after already entering it when I inspect the element. This does not happen in Chrome.
|
||
Comment 4•10 months ago
|
||
Hello,
Since there are no mentions of extensions or the built-in password manager, I’ll change the component and product of the report to hopefully better reflect the issue.
In case of error please, revert the changes or assign a new component/product. Thank you !
|
||
Updated•10 months ago
|
|
||
Comment 5•10 months ago
|
||
This might be a duplicate of Bug 1696770, which occurs when the website is using sourcemaps and devtools performs requests which hit the authentication flow again.
Can you confirm if this website is using sourcemaps (or maybe share a link so that we can reproduce?)
Thanks
Yes, that does seem like a duplicate to me too.
You can see a site here which produces the behaviour.
https://dev.equilibriumdr.co.uk/
User: demo
Pass: Dem0!Dem0!Dem0!
I'm not too familiar with what sourcemaps are so I don't think I should answer that part of the question. Happy to be educated :)
|
|
||
Comment 7•10 months ago
|
||
(In reply to eoin from comment #6)
Yes, that does seem like a duplicate to me too.
You can see a site here which produces the behaviour.
https://dev.equilibriumdr.co.uk/
User: demo
Pass: Dem0!Dem0!Dem0!I'm not too familiar with what sourcemaps are so I don't think I should answer that part of the question. Happy to be educated :)
Thanks for sharing the link! I actually can't see any sourcemap used on this website so this might be a different issue (some general info about sourcemaps here).
Do you get this issue when trying to inspect any element or do you need to pick a specific one?
I don't think it matters what you inspect. Thanks for the link.
|
||
Comment 9•9 months ago
|
||
I have managed to reproduce the annoying re-apparition of the authentification dialog on the website provided in comment 6 in Firefox Release v121.0.1, Nightly v123.0a1 and ESR v115.6.0esr, however, this does not happen every time. It could be an intermittent or a timing issue.
Having known that the similar bug 1696770 is caused by "sourcemaps" and that the test page provided here, supposedly, does not have this particularity, I will refrain from setting this report as a duplicate of the other, but confirm it as a new bug. Thank you.
|
|
||
Updated•9 months ago
|
Description
•