java - How do I extract the username and password out of a URL in a filter? -

-

i've created basicauthfilter , has signature: 

@override public void dofilter(servletrequest request,                      servletresponse response,                      filterchain chain) throws ioexception, servletexception

this working if calls filter authorization header set right way. but, if on chrome or firefox visits url this: 

http://username:password@localhost:8888

the browsers not populating authorization header information (which surprised me). looked @ information sent chrome , username , password in request url else.

i can't figure out how extract information url. i've tried lot of getters on httpservletrequest, haven't found gives me username , password.

note: yes, know insecure, it's convenient use when you're trying test system.

my coworker found this thread implies isn't possible in modern browsers. refuse send username:password part of url on wire security reasons.


Comments

Post a Comment

Popular posts from this blog

javascript - CasperJS/PhantomJS failing SSL handshakes on some sites even with --ssl-protocol=any -

-
javascript - CasperJS/PhantomJS failing SSL handshakes on some sites even with --ssl-protocol=any - i've had issues casperjs , ssl, using --ssl-protocol=any has fixed problem, referenced in this answer. in case, i'm still having issues. i set in command line: casperjs --ssl-protocol=any --ignore-ssl-errors=true sanity.js this sanity.js: var casper = require('casper').create({ verbose: true, loglevel: 'debug' }); casper.on("resource.error", function(resourceerror){ console.log('unable load resource (#' + resourceerror.id + 'url:' + resourceerror.url + ')'); console.log('error code: ' + resourceerror.errorcode + '. description: ' + resourceerror.errorstring); }); casper.start('https://www.google.com/', function() { this.echo(this.gettitle()); }); casper.thenopen('https://www.zazzle.com/lgn/signin', function() { this.echo(this.gettitle()); }); casper.run(...
Read more

codeigniter - Fatal error: Call to undefined function lang() in CI Merchant using CardSave -

-
i have setup checkout using ci merchant , payment gateway provider cardsave. works using test account , test card details when trying live transaction on production account following error: fatal error: call undefined function lang() in xxx\application\libraries\merchant\merchant_cardsave.php on line 160 line 160 looks like: $this->post_redirect($acs_url, $data, lang('merchant_3dauth_redirect')); i've integrated other merchants using ci merchant , haven't come across error before , haven't been able find in google either. has come across , resolved before?
Read more

python - Received unregistered task using Celery with Django -

-
i have celery setup django project , can't seem task run properly. i'm using django 1.4.3, celery 3.0.1, django-celery 3.0.17 , python 2.7 on ubuntu 13.04. i have verified rabbitmq-server running: sudo service rabbitmq-server status status of node rabbit@fenster ... [{pid,1667}, {running_applications,[{rabbit,"rabbitmq","3.0.2"}, {os_mon,"cpo cxc 138 46","2.2.9"}, {mnesia,"mnesia cxc 138 12","4.7"}, {sasl,"sasl cxc 138 11","2.2.1"}, {stdlib,"erts cxc 138 10","1.18.1"}, {kernel,"erts cxc 138 10","2.15.1"}]}, {os,{unix,linux}}, {erlang_version,"erlang r15b01 (erts-5.9.1) [source] [64-bit] [smp:8:8] [async-threads:30] [kernel-poll:true]\n"}, {memory,[{total,28112760}, {connection_procs,93432}, {que...
Read more