New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
HTTP Basic Authentication with credentials in URL fails #3087
Comments
https://github.com/gorhill/uBlock/wiki/Firefox-WebExtensions#read-carefully-if-using-ubowebext Probably https://bugzilla.mozilla.org/show_bug.cgi?id=1379148 , I see |
I can reproduce with FF 55:
I could not reproduce with FF 55:
I can't reproduce with uBO and FF 58. So as @gwarser said, quite probably related to https://bugzilla.mozilla.org/show_bug.cgi?id=1379148. Given that clicking "Cancel" or closing the prompt causes a crash, you might want to report this to Firefox devs: https://bugzilla.mozilla.org/. |
Not sure it's related to https://bugzilla.mozilla.org/show_bug.cgi?id=1379148, or else this raises teh question why it happens with some blockers, but not similar others. I am sure however that this needs to be reported to Firefox devs. |
Here is a minimalist extension with which the issue can be reproduced:
With no other extension enabled:
Result, failure to load the page if clicking "Ok", whole browser crash if clicking "Cancel". When merely removing the |
@Rob--W Is this a duplicate of https://bugzilla.mozilla.org/show_bug.cgi?id=1401516? Minimal repro steps are in the comment immediately above. A blocking |
@gorhil When I run #3087 (comment) in Firefox 58.0a1 (build ID 20171003220138 as seen at about:support), the test case completes successfully. So this is indeed a duplicate of https://bugzil.la/1401516 (which itself has been marked as a duplicate of https://bugzil.la/1396395 because that bug has the patch for the issue). |
Thank you for the investigations! |
https://bugzilla.mozilla.org/show_bug.cgi?id=1396395 The issue is marked as |
Describe the issue
Webpages that use HTTP Basic Authentication may be called with credentials embedded into the URL itself (I use this for a password-protected status page that is always open in a tab, across browser sessions).
When I retrieve a page with such an URL in Firefox, Firefox asks for confirmation if I really want to login as user "user" to the page. After confirmation, the page is loaded - but with the current uBlock Origin release, the page is not loaded after that confirmation (sniffing with Wireshark also shows that the page has not been requested again). Only when I again request the page, it is then loaded (of course without the conformation dialog once again, as Firefox caches the authentication information).
I also disabled all other add-ons, which did not fix the issue. Disabling uBlock Origin and leaving all other add-ons enabled fixed it.
One or more specific URLs where the issue occurs
The following test site uses HTTP Basic Authentication (user/pass:
test
):http://browserspy.dk/password-ok.php
Steps for anyone to reproduce the issue
[
]
Note: As Firefox caches the authentication information for the current session, this will work only once per session.
Your settings
Your filter lists
Default filter lists + Fanboys Annoyance/Anti-Third party social + DEU
The text was updated successfully, but these errors were encountered: