Our XForms application is pulling in various resources which are
protected by Basic authentication. Given that XForms simply offers the
src="XXX" syntax for accessing these external resources, what do people
do/advise?
I can make it work by using the syntax:
http(s)://[username]:[password]@[requested URL]
(although my colleague gets a "401 (Unauthorised)" error for exactly the
same URL), but this is surely a massive security hole, since the
username and password are sitting there in full view in the XForms document.
Any thoughts or advice welcome!
Richard
--
------------------------------------------------------------------------
*Richard Light*
[email protected]
/@richardofsussex/
_______________________________________________
Xsltforms-support mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/xsltforms-support
