Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

What does php's CURLOPT_USERPWD do

Tags:

php

curl

basic-authentication

I was wondering what CURLOPT_USERPWD is actually doing to the url, header or data of a request. Is it INSTEAD OF the Authorization: Basic <base64 of user:pass> or does it work along side this?

Is it modifying the url to this?:

username:[email protected]

I saw some code like this so I am wondering, as it seems if I request that url in a NodeJS equivalent request it is not working with just an Authorization header (I have a theory the server is broken and ignoring the Auth header and using the username:password in the url):

    curl_setopt($ch, CURLOPT_URL, $url);       curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);       $encodedAuth = base64_encode(self::$pfAdapterUser.":".self::$pfAdapterPasswd);      curl_setopt($ch, CURLOPT_HTTPHEADER, array("Authentication : Basic ".$encodedAuth));     curl_setopt($ch, CURLOPT_USERPWD, self::$pfAdapterUser.":".self::$pfAdapterPasswd);     curl_setopt($ch, CURLOPT_HTTPAUTH, CURLAUTH_ANY);     curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);     curl_setopt($ch, CURLINFO_HEADER_OUT, true);

Thanks

like image 599
Dominic Avatar asked May 22 '14 14:05

Dominic

People also ask

What is Curlopt_userpwd?

Name. CURLOPT_USERPWD - user name and password to use in authentication.

What does Curl_exec return?

Returns true on success or false on failure. However, if the CURLOPT_RETURNTRANSFER option is set, it will return the result on success, false on failure. This function may return Boolean false , but may also return a non-Boolean value which evaluates to false .

What is Curlopt_encoding?

CURLOPT_ENCODING only tells the server what types of encoding it will accept. So either way the data will only be decoded if needed. But by giving CURLOPT_ENCODING a value you are limiting your call to only accept one type of encoding.

What is curl_init?

The curl_init() function will initialize a new session and return a cURL handle. curl_exec($ch) function should be called after initialize a cURL session and all the options for the session are set. Its purpose is simply to execute the predefined CURL session (given by ch).

1 Answers

Is it modifying the url to this?:

username:[email protected]

No, the url still the same. You can check with

curl_getinfo($ch, CURLINFO_EFFECTIVE_URL);

This

$encodedAuth = base64_encode(self::$pfAdapterUser.":".self::$pfAdapterPasswd); curl_setopt($ch, CURLOPT_HTTPHEADER, array("Authorization: Basic ".$encodedAuth));

And this

curl_setopt($ch, CURLOPT_USERPWD, self::$pfAdapterUser.":".self::$pfAdapterPasswd);

are doing the same thing so there's no need to use them together (although it won't break), use one and it will work fine.

like image 166
hlscalon Avatar answered Sep 23 '22 07:09

hlscalon
Sign in to Comment

Related questions

Generate a single use token in PHP: random_bytes or openssl_random_pseudo_bytes?
Docker in MacOs is very slow
Why is -1 > null true in php
Need guidance to start with Zend ACL
PHP empty() on __get accessor
How to use Traits - Laravel 5.2
Laravel Eloquent $model->save() not saving but no error
How can I get jQuery code completion in NetBeans?
Will a script continue to run even after closing a page?
MySQL select * with distinct id
PhpStorm is not receiving xdebug connections : PhpStorm event log : Cannot evaluate expression 'isset($_SERVER['PHP_IDE_CONFIG'])'
SQL & PHP - Which is faster mysql_num_rows() or 'select count()'?
session_start hangs
What is the difference between ?int $number and int $number = null?
Why does crypt/blowfish generate the same hash with two different salts?
Get child class namespace from superclass in PHP
amazon s3 - image downloading instead of displaying in browser
Check for valid SQL column name
Mixed Content Page: requested an insecure stylesheet error
Calling an overridden parent method

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!