Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How do I keep Firefox from prompting for username/password with HTTP Basic Auth with JQuery AJAX?

Tags:

javascript

jquery

firefox

http-authentication

I'm writing some browser side dynamic functionality and using HTTP Basic Auth to protect some resources. The user experience is very important and is highly customized.

Here's a simple test JQuery method that eventually will test if a user has supplied the right credentials in a form:

$(document).ready(function() {
    $("#submit").click(function() {
    var token = Base64.encode($('#username').val() + ':' + $('#password').val());        
    $.ajax({
      url: '/private',
      method: 'GET',
      async: false,
      beforeSend: function(req) {
        req.setRequestHeader('Authorization', 'test:password');
      },
      error: function(request, textStatus, error) {
        if (request.status == 401) {
          alert('401');
        }
      }
    });
    return false;
  });
});

If they are not allowed to access /private, at the moment they should see just the alert box. However, on Firefox, a browser-provided login form pops up (to retry with new credentials). Safari does not do this.

We want to completely control the experience with custom forms, fades, transitions, etc. How can I keep Firefox's default box from being shown? (If this will be an issue when we test for IE, I'd love to hear solutions there, too.)

like image 775
Ian Terrell Avatar asked May 30 '09 02:05

Ian Terrell

People also ask

How do I stop browser invoke basic auth pop up?

Since you can't change the browser's default behavior of showing the popup in case of a 401 (basic or digest authentication), there are two ways to fix this: Change the server response to not return a 401 . Return a 200 code instead and handle this in your jQuery client.

How can I pass the basic HTTP authentication?

We can do HTTP basic authentication URL with @ in password. We have to pass the credentials appended with the URL. The username and password must be added with the format − https://username:password@URL.

Is Basic Auth safe over https?

Security of basic authentication As the user ID and password are passed over the network as clear text (it is base64 encoded, but base64 is a reversible encoding), the basic authentication scheme is not secure. HTTPS/TLS should be used with basic authentication.

1 Answers

In case you haven't read it:

How can I supress the browser's authentication dialog?

Doesn't look too promising :)

like image 133
karim79 Avatar answered Oct 04 '22 12:10

karim79
Sign in to Comment

Related questions

Slick slider gets wrong width
How to get country code and Country name using IP in react js
Materialize Date Picker automatically hide after opening problem on chrome
Jquery: Running AJAX locally without a webserver
NicEdit Error in Chrome
How to Disable Copy Paste (Browser)
Highchart hide default buttons
I am struggling with the requirejs optimizer and non AMD modules
What's the best fallback if Google Ajax API is not available (since Google does not permit to install it locally)?
Disable series through configuration in highcharts
NVD3/D3 change y axis minimum value
Create a form dynamically with jquery and submit
BxSlider displayes last slide as first slide
Remove Whitespace-only Array Elements
How to Promisify this function - nodejs [duplicate]
How to clone a Javascript Array of Objects?
ImageBackground ResizeMode
async / await fetch in node-js
How to select elements within an iframe element in Puppeteer
Finding the FORM that an element belongs to in JavaScript

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!