Fix Issue #8797: Raise HTTPError on failed Basic Authentication immediately. Initial patch by Sam Bull.

author: Senthil Kumaran <senthil@uthcode.com> 2014-08-20 07:53:58 +0530
committer: Senthil Kumaran <senthil@uthcode.com> 2014-08-20 07:53:58 +0530
commit: 465b1af3a58f053077a7836e8ec2ba5bd7489ffc (patch)
tree: b3f1f0118f2df14e58053fb48021f20e810bf44c /Lib/urllib/request.py
parent: d078cbdb0c4bdb03cc167fcb1a2b1f55662e42f3 (diff)
download: cpython-465b1af3a58f053077a7836e8ec2ba5bd7489ffc.tar.gz
1 files changed, 2 insertions, 18 deletions
diff --git a/Lib/urllib/request.py b/Lib/urllib/request.py
index 0389f5e853..a17c86859a 100644
--- a/Lib/urllib/request.py
+++ b/Lib/urllib/request.py
@@ -846,10 +846,6 @@ class AbstractBasicAuthHandler:
             password_mgr = HTTPPasswordMgr()
         self.passwd = password_mgr
         self.add_password = self.passwd.add_password
-        self.retried = 0
-
-    def reset_retry_count(self):
-        self.retried = 0
 
     def http_error_auth_reqed(self, authreq, host, req, headers):
         # host may be an authority (without userinfo) or a URL with an
@@ -857,13 +853,6 @@ class AbstractBasicAuthHandler:
         # XXX could be multiple headers
         authreq = headers.get(authreq, None)
 
-        if self.retried > 5:
-            # retry sending the username:password 5 times before failing.
-            raise HTTPError(req.get_full_url(), 401, "basic auth failed",
-                    headers, None)
-        else:
-            self.retried += 1
-
         if authreq:
             scheme = authreq.split()[0]
             if scheme.lower() != 'basic':
@@ -878,17 +867,14 @@ class AbstractBasicAuthHandler:
                         warnings.warn("Basic Auth Realm was unquoted",
                                       UserWarning, 2)
                     if scheme.lower() == 'basic':
-                        response = self.retry_http_basic_auth(host, req, realm)
-                        if response and response.code != 401:
-                            self.retried = 0
-                        return response
+                        return self.retry_http_basic_auth(host, req, realm)
 
     def retry_http_basic_auth(self, host, req, realm):
         user, pw = self.passwd.find_user_password(realm, host)
         if pw is not None:
             raw = "%s:%s" % (user, pw)
             auth = "Basic " + base64.b64encode(raw.encode()).decode("ascii")
-            if req.headers.get(self.auth_header, None) == auth:
+            if req.get_header(self.auth_header, None) == auth:
                 return None
             req.add_unredirected_header(self.auth_header, auth)
             return self.parent.open(req, timeout=req.timeout)
@@ -904,7 +890,6 @@ class HTTPBasicAuthHandler(AbstractBasicAuthHandler, BaseHandler):
         url = req.full_url
         response = self.http_error_auth_reqed('www-authenticate',
                                           url, req, headers)
-        self.reset_retry_count()
         return response
 
 
@@ -920,7 +905,6 @@ class ProxyBasicAuthHandler(AbstractBasicAuthHandler, BaseHandler):
         authority = req.host
         response = self.http_error_auth_reqed('proxy-authenticate',
                                           authority, req, headers)
-        self.reset_retry_count()
         return response
author	Senthil Kumaran <senthil@uthcode.com>	2014-08-20 07:53:58 +0530
committer	Senthil Kumaran <senthil@uthcode.com>	2014-08-20 07:53:58 +0530
commit	465b1af3a58f053077a7836e8ec2ba5bd7489ffc (patch)
tree	b3f1f0118f2df14e58053fb48021f20e810bf44c /Lib/urllib/request.py
parent	d078cbdb0c4bdb03cc167fcb1a2b1f55662e42f3 (diff)
download	cpython-465b1af3a58f053077a7836e8ec2ba5bd7489ffc.tar.gz