22534 - Clearing authentication password by sending a 401

Status: VERIFIED FIXED

(Core :: Networking, defect, P3)

Description

[Greg Breland]

This problem is easy to recreate in both the Linux and Win32 versions of
Mozilla.  I have a page that demenstrates the problem at:
http://www.healthtech.net/test/index.html

I am sending the following header information to Mozilla in order to request a
password:

WWW-authenticate: basic realm=American HealthTech
HTTP/1.0 401 Unauthorized

This works and Mozilla prompts for a password.  Now if you go to another page
on the same site that needs a different username/password, I again send the
above header information.  Mozilla prompts for the username/password again.
However, no matter what username/password is entered, it returns the orgional
username/password to the server instead of the newly entered information.

Comment 1

[Stephen P. Morse]

This has nothing to do with the password cache.  Rather it is the password
authentication in necko.  Reassigning to Valeski.

Comment 2

[Gagan]

taking over...

Comment 3

[Judson Valeski]

fix checked in 12/29/99 2:00pm pac time.

Comment 4

[Paul MacQuiddy]

setting tever as qa

Comment 5

[Greg Breland]

This bug has re-appeared.

I noticed when Netscape 6.0prc1 came out that this bug was not fixed in it.  
Since 6.0 is based on M14, I double checked the nightly builds and sure enough, 
Mozilla is also failing my test page again.  I also tried sending different 
realms for each page with no effect.

Comment 6

[Gagan]

just checked in a fix so now this should work (for most part) :)

Comment 7

[Tom Everingham]

verified:
winNT 2000070508
Mac 8.6 2000070511
Linux 2000070420 

Comment 8

[Pulsebot]

Pushed by ffxbld-merge:
https://hg.mozilla.org/releases/mozilla-beta/rev/98a9ae4fb66e
[fenix] For https://github.com/mozilla-mobile/fenix/issues/22534 - Show history highlights and groups in "Recently visited" (https://github.com/mozilla-mobile/fenix/pull/22535)