Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
HomeAnnouncementsWhite Papers
Discussion GroupsFirst AidDatabasesJavaBeansGUIJava 3DVirtual MachineCORBASecurityToolsGeneral
Java DirectoryOpen Source ProjectsSample Book ChaptersUser GroupsWeb Resources
Related Topics
Databases.NETMore Topics ...
Java Forum / Security / March 2004

Tip: Looking for answers? Try searching our database.

browser autologin

Thread view: 
Enable EMail AlertsStart New Thread
slc - 09 Mar 2004 15:01 GMT
I use this sintax to have autologin with all browser:

http://usernname:password@www.domain.com

With last patch Internet Explorer do not accept '@' char. This is a
great problem because now all my application are been not able to
perform this autologin.

There is an other method to perform autologin of browser?
Is it possible with set headers in http protol?

Ldap how can be combinated with web browser authentication?

Thanks
Reply to this Message
Michael Amling - 09 Mar 2004 15:56 GMT
> I use this sintax to have autologin with all browser:
>
[quoted text clipped - 6 lines]
> There is an other method to perform autologin of browser?
> Is it possible with set headers in http protol?

  Yes. This works for me:

someURLConnection.setRequestProperty("Authorization", "Basic "+xxx);

where xxx is username:password encoded as base 64. For example, if the
username is "test" and the password is "test123", then

s.setRequestProperty("Authorization", "Basic dGVzdDp0ZXN0MTIz");

--Mike Amling
Reply to this Message
slc - 10 Mar 2004 08:58 GMT
>> I use this sintax to have autologin with all browser:
>>
[quoted text clipped - 17 lines]
>
>--Mike Amling

I tried to use Authorization or WWW-Autenticate headers, but
WWW-Autenticate open browser prompt to input userid and password,
Authorization isn't good because i  use a redirect of page into
browser and so must be browser to perform request with Authorization
and no my java code.

There are two web application:
1) My web application in jsp
2) An other web application with method autentication (userid and
passowrd are inserted not by form but by prompt of browser) e script
code unknow (should be lotus domino with server ldap)

I know userid e password and i must redirect browser from my
application in this other application without browser prompt userid
and password.

Also i have looking for a cookie where browser store Authorization
data and send into request for this domain. But i dont' find anything!
So i think that this data are stored in internal cache of Browser.

It's possibile to use ldap server to perform a single sign beetwen my
web application and the other application even if it use browser
authentication and user are store in ldap server?

Thanks
Reply to this Message


Free Magazines

Get these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...

Oracle MagazineNetwork ComputingComputer WorldBio-IT WorldeWeekInformation WeekInfosecurity
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2008 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.