You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by Eric Covener <co...@gmail.com> on 2009/08/26 15:06:29 UTC

Re: [users@httpd] Can you supply username & password for AuthType Basic within a POST/GET?

On Wed, Aug 26, 2009 at 8:58 AM, Jeff Sherk Forerunner
Ministries<je...@forerunnertv.com> wrote:
> When requiring a username & password with AuthType Basic, is it possible to
> include them in a POST or GET request to the server so that it won't ask for
> them (because they were provided)?
>
> If it's possible, what variable names are assigned to them.

No, basic authentication credentials have to come in over the
prescribed HTTP header, not as part of a query string or POST body.

A browser will allow you to encode them into the URL
(http://user:pass@example.com/foo), and will pass them to the
webserver without prompting you.

-- 
Eric Covener
covener@gmail.com

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org