[Bug 6836] wget redirected page use wrong authentication info

bugzilla at busybox.net bugzilla at busybox.net
Tue Feb 4 12:26:51 UTC 2014


https://bugs.busybox.net/show_bug.cgi?id=6836

--- Comment #5 from Denys Vlasenko <vda.linux at googlemail.com> 2014-02-04 12:26:46 UTC ---
(In reply to comment #3)
> Thanks for the quick response.  This patch will surely work.  But here is what
> I observed from GNU wget:
> 
> 1. It only sends user/password after the 401 from the server.
> 
> 2. If the first http request has user/password inside the URL, it will use it
> for this original request but not the second 302 redirected URL.  It makes
> sense because the user/password is only a part of the original URL.

This will work for GNU wget since after redirect to a protected resource,
it gets 401 from it, and responds with Authorization: header.

Since we don't do "wait for 401" thing, we should send Authorization:
right away.

-- 
Configure bugmail: https://bugs.busybox.net/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.


More information about the busybox-cvs mailing list