New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
requests.post() adds unwanted Authorization: Basic header with anonymous:no@mail.dom #927
Comments
Interesting. I'd remove that from your Also, there's a config you can set to diasble this: |
Thank you. I did not touch .netrc in years, i think this line was useful for browsing public FTP. Still it is not clear why in one case requests does not send explicitly set auth headers on premise that exact algorithm (Basic, Digest, etc) is not known beforehand. Does .netrc somehow imply Basic authorization? |
If you think about the Requests API this actually makes sense. Requests special-cases Basic Auth so you can just pass a naked tuple to the Does that answer your question? |
@Lukasa there shouldn't be such a parameter ;) |
You shouldn't have that line in your |
WTF this is coming from? So after poking a bit, i found that it's from my .netrc:
default login anonymous password no@mail.dom
Okay, so i have to disable automatic netrc support somehow.
Please, tell me one thing, how does it correspond to #44 where auth is explicitly set, but no header is sent and here no auth is set but header is sent?
The text was updated successfully, but these errors were encountered: