I 开发者_如何学运维have a webapplication which does the kerberos and basic authentication as well. I do not know what the client is capable of. So both auth mechanisms are sent in 401 reply.
The reply header will contain,
WWW-Authenticate: Negotiate
WWW-Authenticate: Basic realm="MyREALM"
But, I want the client to fall back to basic auth only if negotiate fails.
I want the flow should be like,
- The client request
- Server responds with WWW-Authenticate: Negotiate
- The client re-request with (either with wrong auth data or with some flag indicating it can't proceed)
- The server response again with WWW-Authenticate: Basic realm="MYREALM"
- Client does basic auth.
How can I do this? I modified the server code to do this. But the browser which is not in any domain (its supposed to do basic auth) does not respond after step2.
What is your browser? The specific RFC chapter 4.6 mandates that the browser has to use the strongest auth offered. I cannot recall what the browser should do if it cannot obtain credentials for that.
![Interactive visualization of a graph in python [closed]](https://www.devze.com/res/2023/04-10/09/92d32fe8c0d22fb96bd6f6e8b7d1f457.gif)
加载中,请稍侯......
精彩评论