RESOLVED INVALID 78993
http-511 Handle HTTP error 511 Network Authentication Required (standard secure proxy authentification/captive portal detection 
https://bugs.webkit.org/show_bug.cgi?id=78993
Summary Handle HTTP error 511 Network Authentication Required (standard secure proxy ...
Nicolas Mailhot
Reported 2012-02-19 03:27:28 PST
Since http://code.google.com/p/chromium/issues/detail?id=7338 and https://bugzilla.mozilla.org/show_bug.cgi?id=479880 there is no clean way for a proxy or captive portal to get a browser to display an authentication dialog when user credentials expire while he is browsing on an https website. (to be sure, the previous methods were insecure and hackish but they existed because nothing better was available) The IETF finally set up to fix this problem and defined a standard HTTP error that let access control equipments tell the browser authentication or re-authentication is needed and where the authentication form is located. http://tools.ietf.org/id/draft-nottingham-http-new-status-04.txt (since error 511 uses out-of-band authentication it is possible for the browser to only trust specific certs on error 511 and protect the user) Please add error 511 handling in webkit, or have the ietf draft corrected if it's missing something → <http://www.rfc-editor.org/queue2.html#draft-nottingham-http-new-status> (so the spec is approved and in the queue for publication as RFC)
Attachments
Add attachment proposed patch, testcase, etc.
Alexey Proskuryakov
Comment 1 2012-02-20 11:20:25 PST
<rdar://problem/10897053>
Alexey Proskuryakov
Comment 2 2015-04-13 09:22:06 PDT
Could you please clarify what handling is expected from WebKit? In other words, is there a test suite that we should pass in order to claim victory?
Alexey Proskuryakov
Comment 3 2016-05-09 22:07:14 PDT
Closing as INVALID, since this is not actionable without a response.
Note You need to log in before you can comment on or make changes to this bug.