Search jQuery

jQuery Forum

Username and password in an ajax call

in Using jQuery • 8 years ago

I'm trying to connect to a webservice that requires basic authentication, but when I use ajax with username and password set, it still shows the browsers loginform, and the Credentials from the ajax request is not send. Is this not what it is intended for, or do I do something wrong?

$.ajax({

type: "GET",

url: "http://localhost:8080/test",

data: '',

contentType: "application/json; charset=utf-8",

dataType: "xml",

username: "ajax",

password: "code",

success: OnSuccessCall,

error: OnErrorCall

});

Replies(4)

jay.blanc..

Re: Username and password in an ajax call

8 years ago

Try this -

$.ajax({
type: "GET",
url: "http://localhost:8080/test",
data: {username: "ajax", password: "code"},
contentType: "application/json; charset=utf-8",
dataType: "xml",
success: OnSuccessCall,
error: OnErrorCall
});

Steffen L..

Re: Re: Username and password in an ajax call

8 years ago

Your suggestion will send the username and password as clear text. What I would like to do is, when the server has replied with 401 (unauthorized), the username and password is base64 encoded, and added to the header (Authorization). I have tried adding this to the ajax call:

beforeSend: function (xhr){

xhr.setRequestHeader('Authorization', make_base_auth("slp", "12"));

Where the make_base_auth looks like this

function make_base_auth(user, password) {

var tok = user + ':' + password;

var hash = btoa(tok);

return "Basic " + hash;

}

And it adds it correctly to the header, but the browser (I assume) removes it before sending, and uses its own login form instead.

I therefore was hoping that the username & password in the ajax call were intended for basic authentication, and I could use that instead.

jay.blanc..

Re: Username and password in an ajax call

8 years ago

Ah, you didn't mention that in your original post. The header isn't being removed (look in your browser's console to see what the AJAX call sends and receives) but sending the authentication info in the header may not be what your system is looking for. Have you considered endoing the username and password and sending them in the data as I have suggested above?

Steffen L..

Re: Username and password in an ajax call

8 years ago

I have solved my problem now.

I was calling the webservice from a file located on my pc. JQuery handles this as a cross domain call, and calls the vebservice with the OPTIONS method first, without my Authorization header. Then the server replies with 401, and the browser shows the loginform.

I added my file to the server, making the call a non cross domaincall, and now the webservice authenticates the user as expexted.

It seems that you cant do a cross domain call from JQuery.ajax, where the Authorization header is always included

Top Reply

Response title

Attachments

jQuery Forum

Username and password in an ajax call

Replies(4)

Re: Username and password in an ajax call

Re: Re: Username and password in an ajax call

Re: Username and password in an ajax call

Re: Username and password in an ajax call

Statistics

Tags

Actions