This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author dfischer
Recipients dfischer
Date 2011-11-02.16:06:05
SpamBayes Score 0.0067629823
Marked as misclassified No
Message-id <1320249966.17.0.892468926199.issue13323@psf.upfronthosting.co.za>
In-reply-to
Content
I ran into an application that responded with two www-authenticate challenges  to an HTTP request. First, it sends a standard Basic authentication challenge and then it also returns a www-authenticate header referencing another scheme. This looks legal to me according to rfc2617.

However, the regex in AbstractBasicAuthHandler that parses the www-authenticate header only grabs one of the challenges (the last one) and therefore urllib2 will not respond to the challenge with credentials.
History
Date User Action Args
2011-11-02 16:06:06dfischersetrecipients: + dfischer
2011-11-02 16:06:06dfischersetmessageid: <1320249966.17.0.892468926199.issue13323@psf.upfronthosting.co.za>
2011-11-02 16:06:05dfischerlinkissue13323 messages
2011-11-02 16:06:05dfischercreate