Handle credentials requests from HTTP Basic Auths separately#2542
Merged
droidmonkey merged 1 commit intokeepassxreboot:developfrom Dec 11, 2018
Merged
Conversation
droidmonkey
requested changes
Dec 10, 2018
Member
droidmonkey
left a comment
There was a problem hiding this comment.
I don't see a reason to have a separate approval for HTTP auths. My opinion is that HTTP auths should trigger the same approval as before, except it triggers even if approvals are disabled.
Member
Author
|
@droidmonkey That is actually a nice and simple solution for the problem. I'll modify the PR soon. |
f9c244d to
31bd681
Compare
Member
Author
|
Necessary changed made. |
31bd681 to
82cc0c6
Compare
Member
Author
|
Added a global setting that can ignore asking HTTP Basic Auth credential permissions. |
Member
|
You have an error in CI: |
82cc0c6 to
1cbaede
Compare
Member
Author
|
@droidmonkey Thanks for noticing. That is fixed. |
droidmonkey
approved these changes
Dec 11, 2018
droidmonkey
added a commit
that referenced
this pull request
Mar 19, 2019
- New Database Wizard [#1952] - Advanced Search [#1797] - Automatic update checker [#2648] - KeeShare database synchronization [#2109, #1992, #2738, #2742, #2746, #2739] - Improve favicon fetching; transition to Duck-Duck-Go [#2795, #2011, #2439] - Remove KeePassHttp support [#1752] - CLI: output info to stderr for easier scripting [#2558] - CLI: Add --quiet option [#2507] - CLI: Add create command [#2540] - CLI: Add recursive listing of entries [#2345] - CLI: Fix stdin/stdout encoding on Windows [#2425] - SSH Agent: Support OpenSSH for Windows [#1994] - macOS: TouchID Quick Unlock [#1851] - macOS: Multiple improvements; include CLI in DMG [#2165, #2331, #2583] - Linux: Prevent Klipper from storing secrets in clipboard [#1969] - Linux: Use polling based file watching for NFS [#2171] - Linux: Enable use of browser plugin in Snap build [#2802] - TOTP QR Code Generator [#1167] - High-DPI Scaling for 4k screens [#2404] - Make keyboard shortcuts more consistent [#2431] - Warn user if deleting referenced entries [#1744] - Allow toolbar to be hidden and repositioned [#1819, #2357] - Increase max allowed database timeout to 12 hours [#2173] - Password generator uses existing password length by default [#2318] - Improve alert message box button labels [#2376] - Show message when a database merge makes no changes [#2551] - Browser Integration Enhancements [#1497, #2253, #1904, #2232, #1850, #2218, #2391, #2396, #2542, #2622, #2637, #2790] - Overall Code Improvements [#2316, #2284, #2351, #2402, #2410, #2419, #2422, #2443, #2491, #2506, #2610, #2667, #2709, #2731]
sebastianlivoni
added a commit
to sebastianlivoni/keepassxc
that referenced
this pull request
Jun 7, 2025
…9f734c..7943959d7 7943959d7 Merge pull request keepassxreboot#1 from sebastianlivoni/develop 42ba9be92 Merge branch 'feature/safari' into develop 003feb7c5 Merge pull request keepassxreboot#2571 from keepassxreboot/fix/check_input_width_with_segmented_totp 633fd4bf0 Merge pull request keepassxreboot#2574 from keepassxreboot/fix/atlassian_password_input 606e35762 Fix detecting Atlassian password input eb9285212 Fix checking input width with segmented TOTP fields dac9cecef Merge pull request keepassxreboot#2566 from keepassxreboot/fix/query_form_on_savedform_check 6b427faf3 Query form on savedForms check 54f5fe616 Merge pull request keepassxreboot#2560 from keepassxreboot/fix/update_issue_template cda5ee592 Merge pull request keepassxreboot#2553 from keepassxreboot/fix/styling_improvements 8c42d7fce Add some more space between options 2c639749c Styling improvements 951557d50 Merge pull request keepassxreboot#2548 from joetor5/html-id 4be2b176c Fix browser integration doc link id 86c17bf04 Merge pull request keepassxreboot#2542 from keepassxreboot/fix/chatgpt_submit_button 8e4b866f4 Add submit button exception for OpenAI login page a2748198b Merge pull request keepassxreboot#2525 from keepassxreboot/fix/credential_banner_improvement 064d27bf0 Improve username input detection with Credential Banner dccf307e0 Merge pull request keepassxreboot#2524 from keepassxreboot/feature/add_support_for_firefox_shortcuts_page c282d11ac Add support for opening Firefox shortcut settings page 5a6d37acf Merge pull request keepassxreboot#2523 from keepassxreboot/fix/get_credentials_from_different_db 7839dfe09 Fix retrieving credentials from changed DB in unlock dialog 25e1b2745 Merge pull request keepassxreboot#2522 from keepassxreboot/update_to_198 2bf48c680 Update to 1.9.8 0de621f0d Merge pull request keepassxreboot#2510 from keepassxreboot/fix/page_id_checks d5063a6cf Fixes for page object checks and context menu item creation a8297aeb5 Merge pull request keepassxreboot#2500 from keepassxreboot/fix/disable_passkeys_if_site_is_ignored a5e7444f3 Merge pull request keepassxreboot#2521 from keepassxreboot/feature/support_autocomplete_username f19c90cc0 Add support for autocomplete=username e11d63df5 Disable passkeys script injection if site is ignored git-subtree-dir: src/safariwebextension/keepassxc-browser git-subtree-split: 7943959d7bb61a900f900b0a633778ea2acefa83
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Handle credentials requests from HTTP Basic Auths.
Type of change
Description and Context
KeePassXC will detect credential retrieval requests sent from HTTP Basic Auth dialogs. Requests from those dialogs will trigger permission popup every time even if the same URL has been previously denied.
Adds a global setting that can ignore asking HTTP Basic Auth credential permissions.
Related KeePassXC-Browser PR: keepassxreboot/keepassxc-browser#343
Testing strategy
Tested manually in a local server with a page that has both HTTP Basic Auth and a basic username & password inputs.
Checklist:
-DWITH_ASAN=ON. [REQUIRED]