469,646 Members | 1,591 Online
Bytes | Developer Community
New Post

Home Posts Topics Members FAQ

Post your question to a community of 469,646 developers. It's quick & easy.

MSXML2.XMLHTTP username and password encoding

I'm working on a project where we have to call up a URL from a Java
servlet - the only sample call we have is some Javascript that used an
MSXML2.XMLHTTP object to send the request, using a username and
password.

How is the username and password actually passed to the target web
server for the request (via MSXML2.XMLHTTP)? That is, are they sent
as HTTP header fields? Are they sent as query parameters? Are they
sent as part of the URL? Are they encoded or encrypted?

I'e already spent a fair amount of time trying to find this out in the
doc and on the 'net, but I'm not finding this level of detail.

Thanks for any insight.

Regards,
Rick
Nov 12 '05 #1
4 9698
Hi Rick,

The MSXML2.XMLHTTP is the same as Http. The username and password are in
the HTTP header fields. Whether the username and password are encrypted
depends on the server. If it uses BASIC authentication, they're not
encrypted.

Kevin Yu
=======
"This posting is provided "AS IS" with no warranties, and confers no
rights."

Nov 12 '05 #2
Hi Kevin-
Thanks for the reply - do you know the names of the HTTP
header fields?

Thanks again,
Regards,
Rick

-----Original Message-----
Hi Rick,

The MSXML2.XMLHTTP is the same as Http. The username and password are inthe HTTP header fields. Whether the username and password are encrypteddepends on the server. If it uses BASIC authentication, they're notencrypted.

Kevin Yu
=======
"This posting is provided "AS IS" with no warranties, and confers norights."

.

Nov 12 '05 #3


rlr1031 wrote:
I'm working on a project where we have to call up a URL from a Java
servlet - the only sample call we have is some Javascript that used an
MSXML2.XMLHTTP object to send the request, using a username and
password.

How is the username and password actually passed to the target web
server for the request (via MSXML2.XMLHTTP)? That is, are they sent
as HTTP header fields? Are they sent as query parameters? Are they
sent as part of the URL? Are they encoded or encrypted?

I'e already spent a fair amount of time trying to find this out in the
doc and on the 'net, but I'm not finding this level of detail.


Look at
ftp://ftp.isi.edu/in-notes/rfc2617.txt
it describes HTTP authentication, basically when a page is requested and
authentication is required the server sends a
401 Unauthrorized
WWW-Autenticate: scheme params
and the client is supposed to answer with
Authorization: scheme credentials
where it depends on the scheme whether password are encrypted.
--

Martin Honnen
http://JavaScript.FAQTs.com/

Nov 12 '05 #4
Hi Rick,

Please try to check the following link for reference:

http://msdn.microsoft.com/library/de...us/act/htm/act
ml_ref_href.asp

Happy New Year!

Kevin Yu
=======
"This posting is provided "AS IS" with no warranties, and confers no
rights."

Nov 12 '05 #5

This discussion thread is closed

Replies have been disabled for this discussion.

Similar topics

2 posts views Thread by Maris Janis Vasilevskis | last post: by
3 posts views Thread by BjörnHolmberg | last post: by
11 posts views Thread by Kevin O'Brien | last post: by
2 posts views Thread by noOby | last post: by
2 posts views Thread by Dave | last post: by
reply views Thread by gheharukoh7 | last post: by
By using this site, you agree to our Privacy Policy and Terms of Use.