Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 215
  • Last Modified:

How do I kill the authentication pop-up window after htaccess failure?

Hi!

I have a "members" section of  our website that is protected using an .htaccess file.  If the user authentication fails, the user is redirected to the standard 401 error. However, for reasons I don't understand, once on this page, the user continues to receive the authentication pop-up window... over and over and over and over.

You can see what happens if you try a failed login. Go to http://www.dwiresourcecenter.org, and try logging in from the home page.

The 401 error page is obviously located outside the protected members area.

Does anyone know why this is happening, and how I can fix it?

Thanks!
0
darkyla
Asked:
darkyla
1 Solution
 
ramazanyichCommented:
I think it is a problem in your javascript  file global/code/header_preload.js which is called from you document which is called in case of 401 error. (you have 10 images defined and I just calculated it called 10 times login box)
their URL is given as menu10_over = newImage("images/header/menu10-over.gif");
But during login URL is http://site/member/....
It means that URL for image will be http://site/member/image  and that URL is protected by authentication.
So change your script. Put leading slash in newImage call:
menu10_over = newImage("/images/header/menu10-over.gif");

0
 
darkylaAuthor Commented:
LOL... I had no idea.  Thanks.  That seems to have more or less done the job.
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now