Updates:
Owner: w...@chromium.org
Cc: ero...@chromium.org
Comment #6 on issue 12565 by w...@chromium.org: 401 Unauthorized before POST
data on login to D-Link DI-524
http://code.google.com/p/chromium/issues/detail?id=12565
eroman: I believe that an empty realm
WWW-Authenticate: Basic realm=""
causes Chromium to fail the authentication. Here is the
source code:
bool HttpAuthHandlerBasic::Init(std::string::const_iterator challenge_begin,
std::string::const_iterator challenge_end) {
scheme_ = "basic";
score_ = 1;
properties_ = 0;
// Verify the challenge's auth-scheme.
HttpAuth::ChallengeTokenizer challenge_tok(challenge_begin,
challenge_end);
if (!challenge_tok.valid() ||
!LowerCaseEqualsASCII(challenge_tok.scheme(), "basic"))
return false;
// Extract the realm.
while (challenge_tok.GetNext()) {
if (LowerCaseEqualsASCII(challenge_tok.name(), "realm"))
realm_ = challenge_tok.unquoted_value();
}
return challenge_tok.valid() && !realm_.empty();
}
Note the !realm_.empty() in the return statement.
Can we allow an empty realm?
--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
--~--~---------~--~----~------------~-------~--~----~
Automated mail from issue updates at http://crbug.com/
Subscription options: http://groups.google.com/group/chromium-bugs
-~----------~----~----~----~------~----~------~--~---
