cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
search
  • Global community
    • Language:
      • Deutsch
      • English
      • Español
      • Français
      • Português
  • 日本語コミュニティ
    Dedicated community for Japanese speakers
  • 한국 커뮤니티
    Dedicated community for Korean speakers
Exit
0
Upvote

Get HTTPS with Windows log/pass

Vashuu
New Here ,
Feb 25, 2008 Feb 25, 2008

Copy link to clipboard

Copied



This is the page i want to acces via a cfm page (CF7) :
quote:
https://www.zft.adp.com/dock/

i tried
quote:
<cfhttp url="https://www.zft.adp.com/dock/" method="GET" port="443" username="igottheusername" password="andgotpass" resolveurl="Yes" />

and i got this message
quote:
Forbidden You don't have permission to access /dock/ on this server.


but when i go to https://www.zft.adp.com/dock/ with ie, its working fine.

I Guess it is because of the windows login/pass.
is there a way to do it with cfhttp or anyhting else ?
I think the username and password of the cfhttp tag is not the correct one. But I don't know how to deal with this windows log/pass

Thank you in advance.
TOPICS
Advanced techniques

Views

1.4K

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
replies 9 Replies 9
latest latest Jump to latest reply
JR__Bob__Dobbs-qSBHQ2
Advisor ,
Feb 26, 2008 Feb 26, 2008

Copy link to clipboard

Copied

Does the site support basic authentication? CFHTTP does not support windows integrated authentication.
http://livedocs.adobe.com/coldfusion/7/htmldocs/wwhelp/wwhimpl/common/html/wwhelp.htm?context=ColdFu...

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Vashuu
New Here ,
Feb 26, 2008 Feb 26, 2008

Copy link to clipboard

Copied

In Response To JR__Bob__Dobbs-qSBHQ2
So you mean, there is noting we can do if there is windows authentication.

The site have to use basic authentication only ?.

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Mr_Black
Participant ,
Feb 26, 2008 Feb 26, 2008

Copy link to clipboard

Copied

In Response To Vashuu
CFX_HTTP5

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Newsgroup_User
LEGEND ,
Feb 26, 2008 Feb 26, 2008

Copy link to clipboard

Copied

In Response To JR__Bob__Dobbs-qSBHQ2
Vashuu wrote:
> So you mean, there is noting we can do if there is windows authentication.
>
> The site have to use basic authentication only ?.

Yes. Window's integrated Authentication only works from a Windows
Server connection to a Windows Browser running on a Windows OS, thus the
"Windows" integrated part of the protocol.

<cf_http...> does not use a "Windows" browser. It uses ColdFusion's
built in browser. This bare bones browser is also used for schedule
tasks and other HTTP operations.

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Vashuu
New Here ,
Feb 26, 2008 Feb 26, 2008

Copy link to clipboard

Copied

In Response To Newsgroup_User
How do i know if a site use basic authentication or windows authentication
i mean both use windows popup for login/pass right ?

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
JR__Bob__Dobbs-qSBHQ2
Advisor ,
Feb 26, 2008 Feb 26, 2008

Copy link to clipboard

Copied

In Response To Vashuu
quote:
Originally posted by: Vashuu
How do i know if a site use basic authentication or windows authentication
i mean both use windows popup for login/pass right ?


Easy way: If you can login with Firefox, or another non-IE browser, it can support non-Windows authentication, which usually means basic authentication.

Harder way: Look at the HTTP header in the response to your page request and look for "WWW-Authenticate: Basic"

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Vashuu
New Here ,
Feb 26, 2008 Feb 26, 2008

Copy link to clipboard

Copied

Thanks for your quick answer!

1- yes i can acces with firefox, with a popup for log/pass
2- HTTP/1.1 401 Authorization Required
Date: Tue, 26 Feb 2008 20:17:17 GMT
WWW-authenticate: basic realm="root [21:17:17:824]"
Set-Cookie: SMCHALLENGE=YES; path=/; domain=.adp.com; secure
Content-Length: 467
Connection: close
Content-Type: text/html; charset=iso-8859-1

So the site use basic authentication.
So normaly i can use
<cfhttp url="https://www.zft.adp.com/dock/" method="GET" port="443" username="igottheusername" password="andgotpass" resolveurl="Yes" />
with username and password, i guess
but i have this response from the site :
Forbidden You don't have permission to access /dock/ on this server.

On one side i can acces the site with log/pass when i use any browser, but on the other site,when i use a cfm page with cfhttp, i got a error message telling i don't have the permission.

Is there a certain kind of privilege the /dock/ need to have to be access by CF

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
JR__Bob__Dobbs-qSBHQ2
Advisor ,
Feb 26, 2008 Feb 26, 2008

Copy link to clipboard

Copied

In Response To Vashuu
quote:
Originally posted by: Vashuu
Thanks for your quick answer!

1- yes i can acces with firefox, with a popup for log/pass
2- HTTP/1.1 401 Authorization Required
Date: Tue, 26 Feb 2008 20:17:17 GMT
WWW-authenticate: basic realm="root [21:17:17:824]"
Set-Cookie: SMCHALLENGE=YES; path=/; domain=.adp.com; secure
Content-Length: 467
Connection: close
Content-Type: text/html; charset=iso-8859-1

So the site use basic authentication.
So normaly i can use
<cfhttp url="https://www.zft.adp.com/dock/" method="GET" port="443" username="igottheusername" password="andgotpass" resolveurl="Yes" />
with username and password, i guess
but i have this response from the site :
Forbidden You don't have permission to access /dock/ on this server.

On one side i can acces the site with log/pass when i use any browser, but on the other site,when i use a cfm page with cfhttp, i got a error message telling i don't have the permission.

Is there a certain kind of privilege the /dock/ need to have to be access by CF


<ShotInTheDark>
I see that a cookie is included in the headers. It is possible that the server requires a cookie to be set in addition to to the username and password. You might try adding the cookie data with cfhttpparam.
</ShotInTheDark>

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Vashuu
New Here ,
Feb 26, 2008 Feb 26, 2008

Copy link to clipboard

Copied

LATEST
That is correct MR JR "Bob" Dobbs !
thxs so much

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Resources
Documentation
ColdFusion User Guide
Copyright © 2024 Adobe. All rights reserved.
Using the Community Experience League Terms of Use Privacy Cookie preferences Do not sell or share my personal information ad choicesAdChoices