[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #8335 [TorBrowserButton]: Torbutton 1.5 Causing Repeated HTTP Auth Prompts for Every Page



#8335: Torbutton 1.5 Causing Repeated HTTP Auth Prompts for Every Page
----------------------------------------------------------+-----------------
 Reporter:  tas142                                        |          Owner:  mikeperry                    
     Type:  defect                                        |         Status:  new                          
 Priority:  normal                                        |      Milestone:  TorBrowserBundle 2.3.x-stable
Component:  TorBrowserButton                              |        Version:                               
 Keywords:  tbb-rebase-regression, tbb-usability-website  |         Parent:                               
   Points:                                                |   Actualpoints:                               
----------------------------------------------------------+-----------------

Comment(by tas142):

 Hi,

 You can see a demonstration of the issue at the following URL:

 http://tordev1.juplo.com

 The HTTP auth credentials are:

 username: testing
 password: abc123

 This website is a default installation of Joomla 3.0 with sample content
 loaded. Just the public_html folder is protected with http authentication.

 After a page fully loads, browsing to every page requires that the HTTP
 auth username and password be entered again. It is possible to open
 another page from a page that hasn't fully loaded because the Torbutton
 appears to remove the HTTP auth after a page is done loading. Just
 reloading the page after it's been loaded also causes the prompt, even if
 the page is a direct link to an image.

 After each page fully loads, the same message appears in the error
 console:

 Torbutton NOTE: Removing 3rd party HTTP auth for url:  [scrubbed]

 This behavior has been observed on both Joomla and vBulletin installations
 and also within subdirectories, not just when the public_html is
 protected, as was incorrectly stated in a prior message.

 Thanks again for reviewing.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8335#comment:6>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs