inets patch on basic authentication

Ingela Anderton ingela@REDACTED
Wed Apr 13 18:40:13 CEST 2005


Peter Lund wrote:

> To get basic authentication to work better in inets you (OTP) should 
> apply this
> patch to the file mod_auth.erl in the latest inets 4.3.1 in (OTP R10B-4).
> The problem fixed is that the current inets only pops up the basic 
> authentication
> window on the client browser once, not every time when the user supplies 
> a bad
> user/password combination. This bug forces the user to kill the browser 
> entirely
> after a failed login attempt, before the user may try to login again. 
> This is what this
> fix fixes. With this patch inets sends the "WWW-Authenticate" header 
> every time
> the user fails to login correctly.
Thank you for the patch suggestion :) I have now verified that it does
indeed solve this particular problem but it also introduces new bugs
in other scenarios. So I will fix the whole problem for the next inets
version.

-- 
/Ingela - OTP team








More information about the erlang-questions mailing list