We help IT Professionals succeed at work.

We've partnered with Certified Experts, Carl Webster and Richard Faulkner, to bring you two Citrix podcasts. Learn about 2020 trends and get answers to your biggest Citrix questions!Listen Now

x

bypass java prompts

motor-man
motor-man asked
on
Medium Priority
1,194 Views
Last Modified: 2006-11-17
How do you bypass java prompts so that you don't have to enter a user name and password on a site, but still have FULL access of that site (like you would if you had entered the password and user name)

I guess...  Like hacking the page to get in!?
Comment
Watch Question

Commented:
The usernames etc is not generated by Java, and therefore can not be hacked (!!)

They are HTML server generated.  And this is a much bigger subject, than can be answered here.

Author

Commented:

Commented:
Tehre is no such thing possible. Probably you won't find here an answer.
Try on IRC #java #java_hack. There sometimes come such thing, but Java should be "secure" language, so chenches are low. It depends lot of programers how did they solve this. Try to check also some bugs, that you can work around ..
Here is WWW address, where bugs are up . Study them and success is guaranted.
http://www2.vo.lu/homepages/gmid/java.htm
Hope me brings some points :

Author

Commented:
thanx...  but nope

sorry
Commented:
I assume you refer to access a site that is implementing http Basic Authentication when you refer to "java prompts" for user name and password.

I suppose I could tell you exactly what you need to put in, would have to shoot you afterwards.  I believe that you want to get a URLConnection:

URL u = new URL(mumble);
//Default in JDK 1.1 will return HttpURLConnection for http spec.
URLConnection c = u.openConnection();  

// Now you need to set some modes

c.setDoInput(true);
c.setAllowUserInteraction(false);

// Now you need to know the user id and password
// I don't know where to pick up a base64 encoding class
// I'm sure someone has built it...

String auth = com.imaginary.util.Encode64(userid + ":" + pass);
c.setRequestProperty("Authorization", "Basic " + auth);

DataInputStream dis = new DataInputStream(c.getInputStream());
// now read that "protected" page.

Not the solution you were looking for? Getting a personalized solution is easy.

Ask the Experts
Access more of Experts Exchange with a free account
Thanks for using Experts Exchange.

Create a free account to continue.

Limited access with a free account allows you to:

  • View three pieces of content (articles, solutions, posts, and videos)
  • Ask the experts questions (counted toward content limit)
  • Customize your dashboard and profile

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

OR

Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.