W3C home > Mailing lists > Public > www-talk@w3.org > May to June 2000

RE: cgi authorization

From: Igor Clark <igor.clark@forefrontconsulting.co.uk>
Date: Wed, 21 Jun 2000 05:12:13 -0400 (EDT)
To: Fish <fish@infidels.org>
cc: www-talk@w3.org
Message-ID: <Pine.LNX.4.21.0006210952520.11894-100000@fevah.pixelpark.co.uk>
Hi

> Apparently, according to RFC2616, the 401 response you received should have
> included a "WWW-Authenticate:" header. This header contains the challenge. The
> response to the challenge would, it seems, be entered in the "Authorization:"
> header on a subsequent request.

This is right. The header you have to supply is 

    Authorization: <username:password>

(without the < and >). As I understand it, the username/password pair
must be base-64 encoded.

Igor.


-- 
<?> Internet applications consulting & development
<e> igor@forefrontconsulting.co.uk
<m> +44 (0)79 6715 5849
Received on Wednesday, 21 June 2000 10:43:51 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Wednesday, 27 October 2010 18:14:24 GMT