Stack Overflow
Stack Overflow

Questions tagged [http-authentication]

HTTP authentication is a method for a HTTP user agent to provide a user name and a certain proof confirming the user's identity when making a request. Various proofs define different HTTP Authentication methods, e.g. basic, forms, digest, or others.

622 questions
10
votes
1 answer

Custom HTML login form in HTTP Basic Auth

I have an API with HTTP Basic Auth. If non-authenticated users send HTTP requests, then the server returns 401 status code and WWW-Authenticate header. And browser shows standard login form. Is it possible to show my HTML login form instead of…
Ildar
  • 3,808
  • 7
  • 45
  • 81
10
votes
3 answers

Basic HTTP authentication with Jersey / Grizzly

I've written a simple REST server using JAX-RS, Jersey and Grizzly. This is how I start the server: URI baseUri = UriBuilder.fromUri("http://localhost/api") .port(8081) .build(); ResourceConfig rc =…
aioobe
  • 413,195
  • 112
  • 811
  • 826
10
votes
4 answers

Basic HTTP Auth for AWS S3 hosted site, similar to .htaccess

I have a static HTML site hosted on Amazon S3. Ideally I want to be able to limit access to a staging site in the same way as with a .htaccess/.htpasswd file. I understand that bucket policies can be used to limit access (I have already used one to…
Leon Barrett
  • 111
  • 1
  • 5
9
votes
2 answers

Digest authentication with Jersey Client

I have written a REST web service with Jersey Server (that totally rocks !). I am now developing the client part of it, with Jersey Client as well. On the server side, I have chosen a DIGEST authentication, because I personally think that BASIC…
Raphael Jolivet
  • 3,940
  • 5
  • 36
  • 56
9
votes
4 answers

Java: fetch URL with HTTPBasic Authentication

I'm doing some simple HTTP authentication and am getting a java.lang.IllegalArgumentException: Illegal character(s) in message header value: Basic OGU0ZTc5ODBk(...trimmed from 76 chars...) (...more password data...) which I think is due to me…
Paul Tarjan
  • 48,968
  • 59
  • 172
  • 213
9
votes
2 answers

How a fully scalable SPA with a solid backend is built

the past few weeks I've been hard at work with Angular, Node, TDD, Heroku, Amazon S3 etc. Trying to get a better picture of how a fully scalable SPA with a solid backend is built, working with grunt, bower, haven't dipped my toes in TDD using…
Arthur Kovacs
  • 1,710
  • 2
  • 17
  • 24
8
votes
1 answer

Invoking Google Cloud Function from python using service account for authentication

I have a cloud function with trigger type set to HTTP and also have a service account which is having permissions to Invoke the cloud function. I want to invoke the cloud function from a python script. I am using the following script to invoke the…
Saras
  • 163
  • 3
  • 5
8
votes
1 answer

Laravel Basic HTTP Auth Check Returning False

I'm using the basic HTTP authentication provided in Laravel to log in to my website. However, when I call Auth::Check() I always get false as the response even though I am logged in. Does Auth::Check() not work with the basic authentication model…
Liam Potter
  • 1,732
  • 8
  • 24
  • 47
8
votes
1 answer

Building a C# / ASP.NET API using oAuth for API Authentication

Does anyone have any examples or advice for how to go about using oAuth to provide the authentication mechanism for an API that should be publicly exposed? Specifically I'm talking about being an oAuth provider for my own API, not integrating or…
jmcd
  • 4,269
  • 5
  • 36
  • 36
8
votes
5 answers

Flask-HTTPAuth verify_password function not receiving username or password

When I try access a route with the @auth.login_required decorator, I am prompted with a window to enter my username and password. After entering this info, the parameters username_or_token and password for the verify_password function are ''. Why…
user2268507
8
votes
4 answers

WCF WebHttp Mixed Authentication (Basic AND Anonymous)

All of this is pertaining to WebHttp binding, hosted in a custom Service Host (IIS is not an option at this time). I've implemented a custom UserNamePasswordValidator, and a custom IAuthorizationPolicy. When I configure the endpoint's binding to…
TheSoftwareJedi
  • 34,421
  • 21
  • 109
  • 151
8
votes
3 answers

HTTP Authentication (Basic or Digest) in ASP Classic via IIS

I want to develop a website in ASP classic that uses HTTP Authentication against a database or password list that is under the control of the script. Ideally, the solution should involve no components or IIS settings as the script should be runnable…
Alexandros Marinos
  • 1,396
  • 2
  • 15
  • 25
8
votes
1 answer

Is basic auth with SSL secure enough?

I am developing an application which need to handle a massive amount of REST requests. Using basic auth will save a lot of computing resources since I don't have to compute the signatures. Also, the documentation will be a lot simpler. What are your…
TP.
  • 740
  • 7
  • 17
8
votes
1 answer

Protect Jenkins with nginx http auth except callback url

I installed jenkins on my server and I want to protected it with nginx http auth so that requests to: http://my_domain.com:8080 http://ci.my_domain.com will be protected except one location: http://ci.my_domain.com/job/my_job/build needed to…
makaroni4
  • 2,281
  • 1
  • 18
  • 26
8
votes
4 answers

Suppressing browser's authentication dialog

I apologize that there is a similar question already but I'd like to ask it more broadly. Is there any way at all to determine on the client side of a web application if requesting a resource will return a 401 status code and cause the browser to…
Joe Langeway
  • 300
  • 2
  • 8
1 2 3
41 42