1Status: 401 Authorization Required 2<TMPL_VAR NAME="http_401_headers"> 3<TMPL_INCLUDE NAME="header.tmpl"> 4 5 <div id="main"> 6 <h2 id="skip">Authorization Required</h2> 7 <p>Sorry, I am not authorized to access the specified URL.</p> 8 <p> 9 The URL you specified, <<a href="<TMPL_VAR NAME="http_401_url">"><TMPL_VAR NAME="http_401_url"></a>>, 10 returned a 401 "authorization required" response when I tried 11 to download it. 12 </p> 13 <p> 14 You should have been prompted by your browser for a 15 username/password pair; if you had supplied this information, I 16 would have forwarded it to your server for authorization to 17 access the resource. You can use your browser's "reload" function 18 to try again, if you wish. 19 </p> 20 <p> 21 Of course, you may not want to trust me with this information, 22 which is fine. I can tell you that I don't log it or do 23 anything else nasty with it, and you can <a href="source/">download the 24 source code for this service</a> to see what it does, but you have no 25 guarantee that this is actually the code I'm using; you basically have to 26 decide whether to trust me or not :-) 27 </p> 28 <p> 29 You should also be aware that the way we proxy this authentication 30 information defeats the normal working of HTTP Authentication. 31 If you authenticate to server A, your browser may keep sending 32 the authentication information to us every time you validate 33 a page, regardless of what server it's on, and we'll happily pass 34 that on to the server thereby making it possible for a malicious 35 server operator to capture your credentials. 36 </p> 37 <p> 38 Due to the way HTTP Authentication works there is no way we can 39 avoid this. We are using some "tricks" to fool your client into 40 not sending this information in the first place, but there is no 41 guarantee this will work. If security is a concern to you, you 42 may wish to avoid validating protected resources or take extra 43 precautions to prevent your browser from sending authentication 44 information when validating other servers. 45 </p> 46 <p> 47 Also note that you shouldn't use HTTP Basic Authentication for 48 anything which really needs to be private, since the password 49 goes across the network unencrypted. 50 </p> 51 </div><!-- End of "main" --> 52<TMPL_INCLUDE NAME="footer.tmpl"> 53