HtmlUnit / Bugs / #1731 Basic authentication credentials in the URL could get lost

Java GUI-Less browser, supporting JavaScript, to run against web pages

#1731 Basic authentication credentials in the URL could get lost

Milestone: Latest SVN

Status: closed

Owner: RBRi

Labels: None

Priority: 1

Updated: 2015-12-03

Created: 2015-12-03

Creator: Joerg Werner

Private: No

HtmlUnit supports passing the credentials for basic authentication right in the URL:

http://john.smith:secret@localhost/foo.html

However, in some edge cases the credentials could get lost before the request is actually made. This happens if the passed URL needs to be modified because of

an empty path,
a path with dots, or
an internationalized domain name.

In all these cases a new URL will be created, but without the credentials from the original URL.

Attached are two patches, one that adds some new test cases and another one with a potential fix for this issue.

2 Attachments

fix.patch

tests.patch

Discussion

RBRi - 2015-12-03

status: open --> accepted

assigned_to: RBRi
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

RBRi - 2015-12-03

As always, thanks for the patch.
Changes are in SVN; will update the snapshot if the build is fine.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

RBRi - 2015-12-03

status: accepted --> closed
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Basic authentication credentials in the URL could get lost

Java GUI-Less browser, supporting JavaScript, to run against web pages

Group

Searches

Help

#1731 Basic authentication credentials in the URL could get lost

Discussion