Hi Christophe, On 09/12/2016 03:35 PM, Christophe Pettus wrote: > I've encountered a service that does postbacks as part of its API. > The only authentication mechanism is putting the username and > password in the POST URL in the form: > > https://user:p...@example.com/api/endpoint > > Is there a portable way of extracting that information from the > request object?
Yes, it should be in `request.META['HTTP_AUTHORIZATION']`; see https://www.djangosnippets.org/snippets/243/ for an example. The user:pass@host URL syntax is just a way of expressing credentials for HTTP Basic Authentication; the values should end up in the Authorization header. Carl -- You received this message because you are subscribed to the Google Groups "Django users" group. To unsubscribe from this group and stop receiving emails from it, send an email to django-users+unsubscr...@googlegroups.com. To post to this group, send email to django-users@googlegroups.com. Visit this group at https://groups.google.com/group/django-users. To view this discussion on the web visit https://groups.google.com/d/msgid/django-users/ff41ac39-6fb9-43c1-b254-8751ba925dc7%40oddbird.net. For more options, visit https://groups.google.com/d/optout.
signature.asc
Description: OpenPGP digital signature
