Firefox Promts to Save Password Multiple Times for Same Origin URL
Hello, I'm experiencing a issue with my web server specifically on Firefox, allow me to explain: 1. A user clicks a login button and receives a HTTP 401 response, which the user responds to by entering their credentials in the built-in Firefox browser popup then selecting "Sign In". 2. After authenticating successfully, "Save" is selected when Firefox prompts to save login information for this website. 3. User then navigates to a page outside of the origin/index (ex http://192.168.0.3/foo/bar.html, origin/index being http://192.168.0.3), to which they're prompted to save login information again. Issue here with the second save login prompt.
If in step 3 the user selects "Save" this issue goes away, however, more than one popup for saving user credentials is not a good look. Additionally, the save login popup in step 3 is filled out with bogus user credentials; blank username and "password" as the password.
If "Save" is selected in both steps 2 and 3, about:logins will show two entries: 1. 192.168.0.3 (REALM) 2. 192.168.0.3 Where entry 2 contains the bogus user credentials and entry 1 contains the correct user credentials. In entry 1, the REALM is set as the correct realm I send out during the digest authentication process (per digest auth specification).
During both instances of the save login popup, in the Firefox Browser Console the following is printed: LoginManagerPrompter: Couldn't process supplied URIString: http://192.168.0.3 LoginManagerPrompter.jsm:994:16
As I've mentioned this happens with Firefox and never in Google Chrome (Chrome only has 1 save login popup after the initial authentication).
Would someone be able to shed some light on this behavior? Why is Firefox saving a login with my REALM and another without? Is the failure in LoginManagerPrompter related?