Better Solution To WWW::Mechanize Basic Authentication

Limbic~Region has asked for the wisdom of the Perl Monks concerning the following question:

All,
I have already resolved this issue, but I am wondering if anyone has any ideas on why it is necessary and if there is a better way. Here is the situation:

$mech->get($url); # Page fetched is http://foo.com
$mech->credentials($user, $pass); # Basic Authentication
$mech->submit(); # Goes to https://foo.com (basic authentication) then redirects back to http://foo.com

Now, I tried every incantation I could with $mech->credentials() and when I called it but every single time it would spit out an error saying POST failed because https://foo.com required authentication. Here is how I resolved it:

$mech->default_header(Authorization => 'Basic ' . encode_base64($user 
+. ':' . $pass));
$mech->get($url);
$mech->submit();
[download]

Does anyone know why this was necessary and does anyone have a better solution (preferrably using credentials()?

Cheers - L~R

Comment on Better Solution To WWW::Mechanize Basic Authentication Download Code

Replies are listed 'Best First'.
Re: Better Solution To WWW::Mechanize Basic Authentication by MidLifeXis (Monsignor) on Oct 19, 2009 at 14:58 UTC
See the get_basic_credentials method in the callback section of LWP::UserAgent. Mech inherits from LWP::UA. Update: `credentials()`, afaict, takes 4 parameters, not two. Perhaps that is the root of the reason it isn't working. Reached for my favorite hammer when a screwdriver was already provided. Update 2: Per almut in Re^4: Better Solution To WWW::Mechanize Basic Authentication, I stand corrected. Two parameter version is quite correct. --MidLifeXis	[reply] [d/l]
Re^2: Better Solution To WWW::Mechanize Basic Authentication by Limbic~Region (Chancellor) on Oct 19, 2009 at 15:51 UTC
MidLifeXis, Mech inherits from LWP::UA. Yes, I know. That's how I was able to solve the problem - using the inherited default_header() method. I still don't see how your suggestion helps. My understanding after RTFM is that this is just a way to get user name and password not set it. It just uses previously stored information from the credentials() method - which I indicate didn't work for me. Can you please show me an example of how you think this might help me? Cheers - L~R	[reply]
Re^3: Better Solution To WWW::Mechanize Basic Authentication by MidLifeXis (Monsignor) on Oct 19, 2009 at 16:26 UTC
Note: vastly simplified. `package MyUA; use base 'LWP::UserAgent'; { my $user; my $pass; sub set_creds { $user = shift; $pass = shift; } sub get_basic_credentials { ($user, $pass) } }` [download] `get_basic_credentials()` is called by the GET/POST/FOO methods when challenged (perhaps more often, you may need to verify this). I use it to read passwords from a config file, prompt from a terminal w/o echoing, and other times that I need to access restricted sites. Update: `credentials()`, afaict, takes 4 parameters, not two. Perhaps that is the root of the reason it isn't working. Reached for my favorite hammer when a screwdriver was already provided. Update 2: Per almut in Re^4: Better Solution To WWW::Mechanize Basic Authentication, I stand corrected. Two parameter version is quite correct. --MidLifeXis	[reply] [d/l] [select]
Re^4: Better Solution To WWW::Mechanize Basic Authentication by almut (Canon) on Oct 19, 2009 at 16:52 UTC
Re^5: Better Solution To WWW::Mechanize Basic Authentication by MidLifeXis (Monsignor) on Oct 19, 2009 at 17:04 UTC
Re^4: Better Solution To WWW::Mechanize Basic Authentication by Limbic~Region (Chancellor) on Oct 19, 2009 at 17:14 UTC
Re^5: Better Solution To WWW::Mechanize Basic Authentication by MidLifeXis (Monsignor) on Oct 19, 2009 at 17:45 UTC