Questions tagged [basic-authentication]

1

votes
0

answer
6

Views

Different handling of basic authentication in rest client and web app in browser

I have angular frontend and spring backend. I'm using spring security to hande http basic authentication. I noticed strange difference in behaviour using advanced rest client(or any other) and angular web app. For tests I disabled my httpInterceptor so it is not including 'Authorisation: Basic fooba...
skoomi
1

votes
1

answer
100

Views

WSO2 EI and WSO2 Developer - Setup an ESB Proxy with http basic authentication

I'm using WSO2 EI 6.3.0 and WSO2 Developer Studio 3.8.0. I'm working with an ESB Project and a Proxy Service inside it. The Proxy service is a simple pass through service; it receives a request from a webapp and forward it to a Soap Web Service, gets the response from the WS and gives it back to the...
Roger 71
1

votes
0

answer
147

Views

Basicauth setup on Elasticsearch 6 dot release

I am trying to test few plugins related to user access for test user (custom access based doc filtering) on ES and I need to have basic auth to validate it. Is there a user manual for setting up basic auth setup at elasticsearch (6 dot release) at server end. Any information will be great help.
Ankur Saran
1

votes
1

answer
53

Views

Not able to fetch Logged in User name when Liferay is configured to use Basic Auth and users are defined in tomcat-users.xml

Liferay 6.2 Auth Type: BASIC Web.xml has entries: /c/portal/protected /* PAdministrator BASIC PAdministrator Tomcat User .xml: After Tomcat restart : Browser throws up Popup asking for credentials. However when i say request.getPrincipal() it always returns userid of the default portal user account,...
Mogambo mast
1

votes
0

answer
234

Views

Authorization Required error while trying to list hotels.

I'm affiliate to booking.com then I want to use Booking API docs here. The request which I'm using is this: GET https://distribution-xml.booking.com/2.0/json/hotels?hotel_ids=10004 I have used basic authentication in my request headers But I am getting this error : { 'errors': [ { 'message': 'Auth...
persia
1

votes
0

answer
630

Views

Use basic and jwt authentication in different routes with Adonis JS

I am developing an app with Adonis JS and I have a problem with authentication. I intend to use two authentication schemes for this app: basic and jwt. Set the authenticator field with jwt in the auth.js file 'use strict' module.exports = { /* |-------------------------------------------------------...
Ernesto Rojas
1

votes
1

answer
276

Views

Security Dialogflow fulfillment request headers

This is a follow up on Security Dialogflow fulfillment thread. the answer there explore the req.headers.authorization you will find an authentication variable (concat these three things: Your dialogflow username The character ':' Your dialogflow password and encode it in base64) makes sense but in...
Jimmy
1

votes
1

answer
847

Views

Issues with Nextcloud on Apache/Debian/PHP-FPM

I have currently two issues with a fresh debian-setup in context of Nextcloud on Apache. Nextcloud version: 12.0.4 Operating system: Debian 9.3.0 Apache version: 2.4.25 PHP version: PHP-FPM 7.0.27 On my Apache I generally use Basic Auth. So if you browse to h****://my.server.com you will be challen...
daily
1

votes
1

answer
359

Views

Unable to pass Windows Security authorization popup (protractor)

I got stuck with authorization in IE. In my case: I have adfs authorization, which redirect me from my site to adfs, then to my site again redirect me back. I tried this way: browser.switchTo().alert().sendKeys('Text'); But this works only for first input field. For the second input field: browser.s...
Goncharr
1

votes
0

answer
99

Views

Symfony4 - Basic Auth looping while using DB provider

I'm desperate : I'm using Symfony for years, and today I'm stuck on a basic stuff. As FOSUserBundle is not implemented for Sf4 yet, I decided to create a really basic User entity in DB to load user. But when I enter my username/password in the BasicAuth windows in my web browser (chrome) it's not lo...
Pete_Gore
1

votes
0

answer
139

Views

How to set up apache basic authentification with shiny server opensource?

I am trying to setup apache basic authentification to shiny server running on Cent OS 7 For the moment I figured out how to set up the authentification to basic html files floowing this tutorial https://www.server-world.info/en/note?os=CentOS_7&p=httpd&f=8 Howerver when trying to change the location...
user2486276
1

votes
1

answer
90

Views

Chrome remote debugging Basic Authentication

How can I do a basic authentication via chrome remote debugging? That is I have a chrome running in remote debug like this chrome.exe –remote-debugging-port=9222 then I use WebSocket4Net to comunicate with chrome. I would like to automate the basic authentication, by passing user and password in t...
ayasha
1

votes
0

answer
35

Views

How to make an OAuth Authentication from IP

I have a .NET Web Api. I want to consume from webs and Mobile Apps, but I don't want the user to sing in or create an acount. Can I make an authentication from IP or domain name or something similar? I tried to implement a Basic and Oauth Authentication, but don't want to place the plain text with t...
Dani Hernandez
1

votes
0

answer
130

Views

Nodejs basic auth with https

I have a nodjs app running that uses basic auth with the password details in a file generated by htpasswd. This is working fine. What I'd like to do is run it over https. I can get it working with https fine, but can't seem to work out how to get the two working together, https + basic auth. This...
mickwombat
1

votes
1

answer
1.1k

Views

Jira Rest Api Basic Auth Token - PowerShell - Building with secure strings

I've been trying to build out basic auth tokens using powershell user persistent variables where I store the password as a secure string. This is what I have so far: $PlainPassword = 'atestpassword' $SecurePassword = $PlainPassword | ConvertTo-SecureString -AsPlainText -Force | ConvertFrom-SecureStr...
shoppers1d3e
1

votes
1

answer
359

Views

Basic Authentication & Header Location

I am performing an HTTP request to populate an iframe by php. Basically, I don't know how to make the basic authentication in the same redirection. I send the authentication in the header but the page is always asking for credentials with the famous popup -> http://prntscr.com/j0fao9 Code below $use...
Wal Heredia
1

votes
0

answer
43

Views

.htaccess basic auth with no assigned credentials

I am trying to find out how secure this scenario would be. I have a directory which I do not want anybody to ever be able to access or download the encrypted log files within the directory. I have this directory protected by .htaccess basic authentication. I have not set a username and password for...
J---
1

votes
0

answer
248

Views

multiple basic-auth in express/node js

I'm trying to implement a web app protected by basic HTTP authentication, I managed to make it work throughout the project but I would like to perform a kind of differentiation on multiple levels in the routing of my app. I need to leave a part of my app outside of that authentication, for example a...
mixx
1

votes
0

answer
856

Views

How to implement Jax-RS Basic Authentication?

How to implement JAX-RS basic authentication and authorization for each request? I am doing following steps. accepting user name and password from @HeaderParam decoding it After authentication set the unique token in response header. up to this step it works fine. But how can I validate the user for...
OnkarG
1

votes
0

answer
42

Views

POST params stripped .htaccess basic auth

I'm basically trying to send an AJAX-Add-to-Cart-POST-Request by WooCommerce WordPress Plugin. The Plugin does so by sending form-data to a URL that already contains a GET param: jQuery.post('/?wc-ajax=add_to_cart', { product_id: '123', quantity: 1 }, function(response) {...}); This works fine loca...
mexn
1

votes
1

answer
1.3k

Views

How do i get this Basic Authentication working in .NET Core

I am using Basic Authentication and I have created a Middleware for this. When I use the Authorize attribute and try to make an API call through Postman, i get 401 Unauthorize even as I am added the authorization details in Postman. I am not sure if it is the way i am calling the controller action v...
ife labolz
1

votes
1

answer
232

Views

Keycloak SAML redirection stuck in loop after logging in

I'm trying to secure a url : /monitoring with Keycloak using SAML. I've modified my web.xml : KEYCLOAK-SAML this is ignored currently monitoringrole Monitoring /monitoring monitoringrole org.springframework.web.context.request.RequestContextListener I've also modified my tomcat7's context.xml file w...
redAce
1

votes
0

answer
154

Views

Waffle SSO authentication with Basic fallback

I have configured Tomcat SSO authentication with Waffle: This works fine, and supports Negotiate with NTLM fallback. What I would like is to add BASIC authentication fallback. Is there a way to achieve this? I have tried this by adding Tomcat's JAASRealm + Waffle's JAAS support (using Tomcat's Combi...
slobo
1

votes
1

answer
184

Views

Cors is not working in apache on heroku

I deployed the php application with Apache with basic authentication enabled. When accessing from local with ajax, the following error occurs. Failed to load https://(myapp).herokuapp.com/api.php?mode=xxx: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Orig...
Yuwaz
1

votes
1

answer
50

Views

How to make user data private so only user who owns/created data can see it?

Can somebody tell me what I need to use to make user data private that only authenticated user can see their own data. What should I implement to my code ? I have already basic authentication and I have authorized users but the problem is that all data is available to all authenticated users who ha...
Anskulainen
1

votes
1

answer
272

Views

How to Create login and logout using Vapor (Basic Authentication)

I want to create login and logout methods and routes. I've done already basic authentication but now I'm stuck how to continue. How should I do that, should I use sessions? I'm using Vapor 3, Swift 4 and PostgreSQL and followed this tutorial https://medium.com/rocket-fuel/basic-authentication-with-...
Anskulainen
1

votes
2

answer
228

Views

HTTP Basic Authentication GET request in AngularJS

I have one GET endpoint. It has HTTP Basic Authentication enabled. I want to create a GET request to the given end point. https://example.com/api GET User Name :- admin Password :- admin My Code :- $scope.listData = function() { $http.get('https://example.com/api').then(function(response) { $sco...
Dinesh Ahuja
1

votes
0

answer
161

Views

Spring Boot : Consuming Apache cxf SOAP service with basic auth

I am setting up SOAP service, using Apache cxf and spring boot, with basic auth. I am trying to consume this service but I have no idea how to pass username and password. Here's my consumer: public class Consumer { private Service service; public Consumer() throws MalformedURLException { URL wsdlURL...
1

votes
0

answer
457

Views

Spring Boot 2 http.httpBasic().disable(); not working

I recently upgraded from Spring Boot 1.x to Spring Boot 2.0.3 and I am trying to disable basic auth with no success. @Configuration @EnableWebSecurity(debug=true) @EnableGlobalMethodSecurity(securedEnabled = true) public class CustomSecurity extends WebSecurityConfigurerAdapter { @Override protected...
peekay
1

votes
1

answer
222

Views

WCF Client with both Basic and Client Certificate Authentication

I am trying to integrate with a Web Service end point which require Basic and Client Certificate for authentication using WCF. I tried below different setting based on suggestions online but still I am receiving 'Could not establish secure channel for SSL/TLS with authority XXXXX'. Server uses well...
Noor Mohamed
1

votes
0

answer
337

Views

Obtaining OAuth token with Basic Authentication

Background I have a Spring application with OAuth2 security. I can easily obtain an OAuth Bearer token with the following request: POST {{...}}/oauth/token ?grant_type=password &client_id={{client_id}} &username={{username}} &password={{password}} This returns a 200 OK request with my access_token...
martoncsukas
1

votes
2

answer
84

Views

Getting blank entry in database

Here is my code public class MainActivity extends AppCompatActivity { EditText etFirstname, etLastname, etEmailPhone, etPassword, etTelephone, etConfirm; Button btnRegister; RequestQueue requestQueue; @Override protected void onCreate(Bundle savedInstanceState) { super.onCreate(savedInstanceState);...
Karan Israni
1

votes
0

answer
23

Views

Is it ok to add routes in an Express middleware?

I am building a small authentication middleware (because I want to!) but to work the way I wanted I found I was adding routes dynamically to the app, both for the POST back of the username/password as well as the GET for the authentication page script and styles. Here it is: function appAuth(auth, o...
nic ferrier
1

votes
1

answer
423

Views

Auth basic 401 page does not prompt for credentials due to PWA service worker caching

I'm using basic auth on my dev site (e.g. dev.example.com) and I'm running into an issue where my site is not prompting me for credentials after my initial visit. In other words, if I clear my browser cache the prompt appears and I can log in just fine. The session persists just fine, but after the...
Xander Luciano
1

votes
0

answer
101

Views

Apache 2.2. Basic Auth, Force Prompt

I have a protected directory for downloads. A protected file in /downloads has this header: WWW-Authenticate: Basic realm='Downloads' I'm protecting it with .htaccess: AuthBasicProvider ldap AuthName 'Downloads' Order Deny,Allow Deny from all Require valid-user Allow from 192.168.1.2 Satisfy any If...
Special Monkey
1

votes
1

answer
144

Views

Symfony protect with HTTP Basic Authentication

I have an existing site built with Symfony 2.8 and I would like to add an extra layer of security by enabling HTTP Basic Auth only when a parameter is set to true in parameters.yml. Is it possible? The site already has a form login enabled but I would like to hide the site completely with basic auth...
StockBreak
1

votes
0

answer
77

Views

Tomcat 9 not using correct instance of MessageDigestCredentialHandler for WebApp

The Problem... I have a web app been built in Tomcat 9, which has a local realm defined, with a MessageDigestCredentialHandler, currently set to use MD5. I have a resource contained within a security-constraint configured to use BASIC authentication. When attempting to access this resource, authenti...
MadProgrammer
1

votes
0

answer
27

Views

elasticsearch & nginx: basic authorithation different users right for one site

Issue: I need to configure Elasticsearch/Kibana basic authorization with basic license. But I need to do this: For user kibana I want to grant access to all http methods (GET, POST, DELETE), however for user logger (which will post log/metric events) I want to grant only POST method. I know, it is...
Sergey Shulik
1

votes
1

answer
168

Views

Python HTTP Basic Authentication through Selenium when username and password contains special characters

I have a very specific problem when trying to use default Selenium auth using this construction username:[email protected] So here is an issue: if I use a password like this '''asd'asd';123asd' (with specific symbols) traceback will say that URL is incorrect. But if the password is just with numb...
Ivan Pelykh
1

votes
0

answer
50

Views

Solr basic authentication permission settings

My goal is to have only user A can read collection 1 and only user B can read collection 2. I thought by adding collection attribute before pre-defined 'read' might help but it didn't. I have tested many ways but didn't work. I saw the example in here but it didn't work. Right now I have: Markdown a...
Rick

View additional questions