Open juliandescottes opened 9 months ago
cc @OrKoN
It looks like CDP only provides a single AuthChallenge. @juliandescottes do you happen to have a test page for multiple challenges?
It looks like CDP only provides a single AuthChallenge.
Do you mean in general, it only provides a single auth challenge even if the challenges are for different realms?
do you happen to have a test page for multiple challenges?
I don't have one at the moment, I was just basing this on the MDN examples for WWW-Authenticate and on the corresponding RFC.
At the moment the authChallenge type only contains two properties:
scheme
andrealm
. However in some cases, multiple challenges can have the same realm & scheme, but support eg a different digest algorithm.For the example above, we would create two identical auth challenges
{ realm: "http-auth@example.org", scheme: "Digest" }
. If we include all the challenge parameters instead, we could make the difference between the two challenges.Our initial design follows the AuthChallenge type in CDP. @sadym-chromium do you (or someone else) know if it was intentional to leave out other parameters?