This week's book giveaway is in the Cloud/Virtualization forum.
We're giving away four copies of Learning OpenStack Networking: Build a solid foundation in virtual networking technologies for OpenStack-based clouds and have James Denton on-line!
See this thread for details.
Win a copy of Learning OpenStack Networking: Build a solid foundation in virtual networking technologies for OpenStack-based clouds this week in the Cloud/Virtualization forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Liutauras Vilda
  • Campbell Ritchie
  • Tim Cooke
  • Bear Bibeault
  • Devaka Cooray
Sheriffs:
  • Jeanne Boyarsky
  • Knute Snortum
  • Junilu Lacar
Saloon Keepers:
  • Tim Moores
  • Ganesh Patekar
  • Stephan van Hulst
  • Pete Letkeman
  • Carey Brown
Bartenders:
  • Tim Holloway
  • Ron McLeod
  • Vijitha Kumara

Form and Basic Authentication  RSS feed

 
Yogesh Hingmire
Ranch Hand
Posts: 61
posted 11 years ago
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Basic authentication i understand uses base64 encoding, but does form based authentication uses base64 encoding too ?

I believe form based authentication transmits username/pwd as plain text.

Thanks again
Yogesh
 
Ulf Dittmer
Rancher
Posts: 42975
76
posted 11 years ago
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Yes, form-based auth is in clear text, because to the browser it's just a regular form submission - it has no idea that it's user credentials. Of course, a base64-encoded password is only marginally harder to recover than a plain text one.
 
It is sorta covered in the JavaRanch Style Guide.
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!

Similar Threads