Bug#498588: iceweasel do not update saved password

Vincent Lefevre vincent at vinc17.net
Thu Dec 24 00:05:21 UTC 2009

found 498588 iceweasel/3.5.6-1

On 2009-12-22 20:29:20 +0100, Mike Hommey wrote:
> > I confirm that this occurs on pages that require authentication,
> > such as
> > 
> >   https://www.antelink.net/antelinkWeb/project.htm?p=mpfr
> > 
> > The new username isn't remembered either.
> Did it get any better with version 3.5 ?

The above website has changed, so that it is no longer possible to
test with it. But I could test with my local web server (see below),
and the bug is still there.

I created a subdirectory "authtest" with the following .htaccess

AuthName authtest
AuthType Basic
AuthUserFile /home/vinc17/tmp/authtest-users

require valid-user

(no need for an index.html file in my case, as I have the option
to list the directory contents). I created two users "user1" and
"user2" with:

  htpasswd -c /home/vinc17/tmp/authtest-users user1
  htpasswd /home/vinc17/tmp/authtest-users user2

Then I opened http://localhost/~vinc17/authtest/ and typed user1
with the corresponding password, and told Iceweasel to remember
the username/password.

Then I updated the .htaccess to replace the "require" line by:

  require user user2

I reloaded the page, and Iceweasel prompted me for another
user/password. By default, I got user1, which no longer worked
(as expected). So, I typed user2 and the corresponding password,
and the page could be loaded. But Iceweasel did not propose me
to save the new user/password, and did not save it, as when I
restarted Iceweasel, user1 was still proposed, instead of user2.

Vincent Lefèvre <vincent at vinc17.net> - Web: <http://www.vinc17.net/>
100% accessible validated (X)HTML - Blog: <http://www.vinc17.net/blog/>
Work: CR INRIA - computer arithmetic / Arénaire project (LIP, ENS-Lyon)

More information about the pkg-mozilla-maintainers mailing list