[Xsltforms-support] Basic authentication strategies
Brought to you by:
alain-couthures
Menu
▾
▴
[Xsltforms-support] Basic authentication strategies
|
From: Richard L. <ric...@gm...> - 2023-10-04 13:11:29
|
Our XForms application is pulling in various resources which are protected by Basic authentication. Given that XForms simply offers the src="XXX" syntax for accessing these external resources, what do people do/advise? I can make it work by using the syntax: http(s)://[username]:[password]@[requested URL] (although my colleague gets a "401 (Unauthorised)" error for exactly the same URL), but this is surely a massive security hole, since the username and password are sitting there in full view in the XForms document. Any thoughts or advice welcome! Richard -- ------------------------------------------------------------------------ *Richard Light* ric...@gm... /@richardofsussex/ |
