Reputation: 39
Sending AJAX request to secured websites
I'm currently writing a script that is meant to GET information from a website. What's unique about this website is that it's password protected (user gets prompted an alert with username and password field similar to the prompt when accessing a router). I'm wondering if there's anyway I can have my script inject these fields automatically? Is there anything I can add to the request below to help inject the username and password into the fields? Thanks in advance.
$.ajax({
url: url,
type: 'GET',
success: function(data){
alert(data);
}
});
Upvotes: 1
Views: 49
Answers (1)
Reputation: 943697
You can inspect the network request in the Network tab of your browser's developer tools and examine the Authentication header in the request to figure out which authentication scheme is in use. Then you should be able to replicate it using some combination of the headers, username and password options to jQuery's Ajax method. Note that you'll likely have to set withCredentials as described on that page too.
Odd are, however, that you will bounce right off the same origin policy as sites using HTTP authentication are less likely to have granted permission via CORS.
Upvotes: 1
Related Questions
- Secure ajax GET/POST request for server
- Ajax GET request over HTTPS
- Security issues in ajax call
- protect ajax & jquery injection
- Cross-site AJAX requests
- ajax call passing security
- Making AJAX calls secure
- howto make secure ajax requests with jquery?
- How to get an Ajax request from an external server using client side JavaScript
- Security of AJAX requests