Comments (5)
@Jakobud auth
option in http
module computer should work for you.
Another question, should we parse out id
and pass
from url
.
http
module will break on this url too:
let res = require('http')
.get('http://user:pa##[email protected]', function (){});
console.log(res._headers); // => 'GET /:pa HTTP/1.1\r\nHost: user\r\nConnection: close\r\n\r\n'
from got.
Passing Basic Auth in the URL is deprecated and not even possible anymore in Chrome and IE.
I think we should add a note now about using auth header instead and in the next major throw if user try to do that instead of using the header. @floatdrop Thoughts?
from got.
@Jakobud on second thought you can pass #
, but you must use encodeURIComponent
:
let res = require('http').get('http://user:' + encodeURIComponent('pa##word')+ '@google.com', function (){});
console.log(res._headers); // => GET / HTTP/1.1\r\nHost: google.com\r\nAuthorization: Basic dXNlcjpwYSMjd29yZA==\r\nConnection: close\r\n\r\n
@sindresorhus yes, username:password
is deprecated by rfc3986, but this format is supported by Node url.parse
method, so I don't see why we should explicitly forbid that.
from got.
yes, username:password is deprecated by rfc3986, but this format is supported by Node url.parse method, so I don't see why we should explicitly forbid that.
In contrast to Node, we can actually prevent its usage. Node has way too much baggage and dependence to do something like that. As for reasoning, it's deprecated and it would help users doing the right thing, and not end up with problems like this one. I see no downside doing this: #106
from got.
So if I don't use username:password
in the url for a particular service, should that service automatically accept the Header authentication alternative?
Thanks for answering this one. It's kind of a weird one.
from got.
Related Issues (20)
- `Response<string>` returned rather than a json response HOT 2
- Is v13 still maintained/supported? HOT 1
- Hangs on revalidated response from cache
- Infinite redirection with special characters in the redirected URL HOT 1
- Support `servername` https option
- How to get traffic usage per request? HOT 1
- Is it possible to skip/disable normalization of a request body? HOT 1
- afterResponse fired 3 times on error HOT 3
- Getting the IP address for failed requests due to timeout
- Post request to API returns response code 500 (Internal Server Error) whereas CURL returns 200 status code HOT 2
- Timeouts are longer than expected HOT 1
- NPM Says: Types are not integrated HOT 1
- FormData getLength can error out when some file input is unknown stream.
- POSTs whose bodys are instances of createReadStream hang with latest node HOT 5
- Apply `applyDestroyPatch` for v11.x
- Stream report downloadProgress when redirects HOT 1
- Is TypeScript support outdated? HOT 1
- Good News for CJS
- afterResponse hook is not called after a retryWithMergedOptions() HOT 2
- HTTP2 with proxy doesn't work? (http2-wrapper)
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from got.