Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
[BUG] HTTP authentication doesn't work
See original GitHub issueContext:
- Playwright Version:
playwright@1.21.1 - Operating System: Mac
- Node.js version: 14.18.1
- Browser: chromium
npx envinfo --preset playwright --markdown
System:
- OS: macOS 12.3.1
- Memory: 359.18 MB / 16.00 GB
Binaries:
- Node: 14.18.1 - ~/.nvm/versions/node/v14.18.1/bin/node
- Yarn: 1.22.18 - /usr/local/bin/yarn
- npm: 6.14.15 - ~/.nvm/versions/node/v14.18.1/bin/npm
Languages:
- Bash: 3.2.57 - /bin/bash
npmPackages:
- playwright: ^1.21.1 => 1.21.1
Code Snippet
import { test, request } from '@playwright/test';
test('requestContext', async () => {
const httpCredentials = {
username: 'user',
password: 'pass',
};
const requestContext = await request.newContext({
baseURL: 'https://playwright.dev',
httpCredentials,
});
await requestContext.get('/');
});
Output (no Authorization header):
> DEBUG='pw:api' playwright test
Running 1 test using 1 worker
_ [google-pixel] _ src/reqeust-context.spec.ts:3:1 _ requestContext (194ms)
pw:api => apiRequest.newContext started +0ms
pw:api <= apiRequest.newContext succeeded +34ms
pw:api => tracing.stop started +3ms
pw:api <= tracing.stop succeeded +5ms
pw:api => apiRequestContext.get started +2ms
pw:api _ GET https://playwright.dev/ +24ms
pw:api user-agent: Playwright/1.21.1 (x64; macOS 12.3) node/14.18 +0ms
pw:api accept: */* +0ms
pw:api accept-encoding: gzip,deflate,br +0ms
pw:api _ 200 OK +108ms
pw:api connection: close +0ms
pw:api content-length: 5429 +1ms
pw:api server: GitHub.com +0ms
pw:api content-type: text/html; charset=utf-8 +0ms
pw:api last-modified: Mon, 09 May 2022 11:23:51 GMT +0ms
pw:api access-control-allow-origin: * +0ms
pw:api etag: W/"6278f9c7-4548" +0ms
pw:api expires: Tue, 10 May 2022 01:54:44 GMT +0ms
pw:api cache-control: max-age=600 +0ms
pw:api content-encoding: gzip +0ms
pw:api x-proxy-cache: MISS +0ms
pw:api x-github-request-id: 6D34:38AE:26FFEA3:283D4A9:6279C38C +0ms
pw:api accept-ranges: bytes +0ms
pw:api date: Tue, 10 May 2022 16:02:47 GMT +0ms
pw:api via: 1.1 varnish +0ms
pw:api age: 210 +0ms
pw:api x-served-by: cache-hhn4035-HHN +0ms
pw:api x-cache: HIT +0ms
pw:api x-cache-hits: 1 +0ms
pw:api x-timer: S1652198568.925187,VS0,VE1 +0ms
pw:api vary: Accept-Encoding +0ms
pw:api x-fastly-request-id: caafc4ba29de9239b66f7b29184e932cb8a6c812 +0ms
pw:api <= apiRequestContext.get succeeded +7ms
1 passed (674ms)
Describe the bug
Passing httpCredentials to request.newContext() doesn’t work: the requests are still not authorized (no Authentication header) - see output above.
But if I do it manually like below, it works:
import { test, request } from '@playwright/test';
test('requestContext', async () => {
const httpCredentials = {
username: 'user',
password: 'pass',
};
const btoa = (str: string) => Buffer.from(str).toString('base64');
const credentialsBase64 = btoa(`${httpCredentials.username}:${httpCredentials.password}`);
const requestContext = await request.newContext({
baseURL: 'https://playwright.dev',
extraHTTPHeaders: {
'Authorization': `Basic ${credentialsBase64}`,
},
});
await requestContext.get('/');
});
Output of manual adding of Authorization: the header is present:
> DEBUG='pw:api' playwright test
Running 1 test using 1 worker
_ [google-pixel] _ src/reqeust-context.spec.ts:3:1 _ requestContext (188ms)
pw:api => apiRequest.newContext started +0ms
pw:api <= apiRequest.newContext succeeded +32ms
pw:api => tracing.stop started +2ms
pw:api <= tracing.stop succeeded +4ms
pw:api => apiRequestContext.get started +1ms
pw:api _ GET https://playwright.dev/ +25ms
pw:api user-agent: Playwright/1.21.1 (x64; macOS 12.3) node/14.18 +0ms
pw:api accept: */* +1ms
pw:api accept-encoding: gzip,deflate,br +0ms
pw:api authorization: Basic dXNlcjpwYXNz +0ms
pw:api _ 200 OK +103ms
pw:api connection: close +0ms
pw:api content-length: 5429 +0ms
pw:api server: GitHub.com +0ms
pw:api content-type: text/html; charset=utf-8 +0ms
pw:api last-modified: Mon, 09 May 2022 11:23:51 GMT +0ms
pw:api access-control-allow-origin: * +0ms
pw:api etag: W/"6278f9c7-4548" +1ms
pw:api expires: Tue, 10 May 2022 01:54:44 GMT +0ms
pw:api cache-control: max-age=600 +0ms
pw:api content-encoding: gzip +0ms
pw:api x-proxy-cache: MISS +0ms
pw:api x-github-request-id: 6D34:38AE:26FFEA3:283D4A9:6279C38C +0ms
pw:api accept-ranges: bytes +0ms
pw:api date: Tue, 10 May 2022 16:05:03 GMT +0ms
pw:api via: 1.1 varnish +0ms
pw:api age: 345 +0ms
pw:api x-served-by: cache-hhn4064-HHN +0ms
pw:api x-cache: HIT +0ms
pw:api x-cache-hits: 1 +0ms
pw:api x-timer: S1652198703.138463,VS0,VE1 +0ms
pw:api vary: Accept-Encoding +0ms
pw:api x-fastly-request-id: 57039b443b1418acb114dcfe9baf5b026644fd94 +0ms
pw:api <= apiRequestContext.get succeeded +8ms
1 passed (680ms)
Issue Analytics
- State:
- Created a year ago
- Comments:5 (1 by maintainers)
Top Results From Across the Web
1195091 - Basic Authentication does not work under certain ...
Summary: Basic Authentication does not work → Basic Authentication does not work under certain circumstances, resulting in an auth error page ...
Read more >496392 – HTTP authentication doesn't work - Bugs - Eclipse
I have a Git repository which is reachable through a Apache2 web server. Read access is available for everyone while write access needs...
Read more >bug #57686, Basic Auth: make auth-no-challenge... [Savannah]
So in the response for the first request server returns `WWW-Auth digest` then it will send password hash instead of clear password as...
Read more >Chrome 19 doesn't respect basic auth details embedded in ...
This bug, as written, no longer applies (HTTP basic auth credentials in URLs work again), at least up through Chrome 34. Comment 93...
Read more >Jira Server and Data Center
Bug JRACLOUD-42098 - HTTP Basic authentication not working anymore for ... We were using jira.atlassian.com REST API to load some test JIRA data...
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
@mxschmitt I am just starting out with Playwright and have hit this issue. From what you are saying, Playwright is expecting a “challenge” response from the server, after which it will resend the request with the
Authorizationheader.In my situation, I don’t get that. It seems that the server that I’m using for API testing expects the
Authorizationheader straight off the bat (and, I would guess from your comment, does not conform to RFC7617). If I use the workaround shown above (adding the header manually), the server will respond as expected.If I don’t manually insert the header, when Playwright makes the request, the server responds with “403 Forbidden”.
I agree with this opinion as well. If I went to the bother of creating a new browser context so that I could specify
httpCredentials, I’m expecting those credentials to be sent with that request. Having them not sent until after the server replies with a 401 seems like a waste of time.