How to define the basic HTTP authentication using cURL correctly?

curl -u username:password http://
curl -u username http://

From the documentation page:

-u, –user <user:password>

Specify the user name and password to use for server authentication. Overrides -n, –netrc and –netrc-optional.

If you simply specify the user name, curl will prompt for a password.

The user name and passwords are split up on the first colon, which makes it impossible to use a colon in the user name with this option. The password can, still.

When using Kerberos V5 with a Windows based server you should include the Windows domain name in the user name, in order for the server to succesfully obtain a Kerberos Ticket. If you don’t then the initial authentication handshake may fail.

When using NTLM, the user name can be specified simply as the user name, without the domain, if there is a single domain and forest in your setup for example.

To specify the domain name use either Down-Level Logon Name or UPN (User Principal Name) formats. For example, EXAMPLE\user and [email protected] respectively.

If you use a Windows SSPI-enabled curl binary and perform Kerberos V5, Negotiate, NTLM or Digest authentication then you can tell curl to select the user name and password from your environment by specifying a single colon with this option: “-u :”.

If this option is used several times, the last one will be used.

http://curl.haxx.se/docs/manpage.html#-u

Note that you do not need --basic flag as it is the default.

Related Posts:

  1. How to define the basic HTTP authentication using cURL correctly?
  2. Can PHP cURL retrieve response headers AND body in a single request?
  3. Setting Curl’s Timeout in PHP
  4. Is curl required?
  5. Should a 502 HTTP status code be used if a proxy receives no response at all?
  6. What is the difference between a URI, a URL and a URN?
  7. HTTP Status 504
  8. What is the difference between POST and GET? [duplicate]
  9. Do I need Content-Type: application/octet-stream for file download?
  10. Problem HTTP error 403 in Python 3 Web Scraping
  11. application/x-www-form-urlencoded or multipart/form-data?
  12. Problem HTTP error 403 in Python 3 Web Scraping
  13. application/x-www-form-urlencoded or multipart/form-data?
  14. Is 418 “I’m a teapot” really an HTTP response code?
  15. “Cannot GET /” with Connect on Node.js
  16. “CAUTION: provisional headers are shown” in Chrome debugger
  17. What’s the difference between a POST and a PUT HTTP REQUEST?
  18. How to do a PUT request with cURL?
  19. PHP + curl, HTTP POST sample code?
  20. How do I send a POST request with PHP?
  21. Why is it said that “HTTP is a stateless protocol”?
  22. What’s the difference between using application/csv vs text/csv? [duplicate]
  23. What are all the possible values for HTTP “Content-Type” header?
  24. What is the difference between PUT, POST and PATCH?
  25. What’s the difference between “Request Payload” vs “Form Data” as seen in Chrome dev tools Network tab
  26. Exception in thread “main” java.net.NoRouteToHostException: No route to host
  27. ndroid 8: Cleartext HTTP traffic not permitted
  28. How are parameters sent in an HTTP POST request?
  29. Why am I suddenly getting a “Blocked loading mixed active content” issue in Firefox?
  30. wget: unable to resolve host address `http’
  31. Are HTTP headers case-sensitive?
  32. When looking at the differences between X-Auth-Token vs Authorization headers, which is preferred?
  33. WordPress HTTP parameter pollution
  34. Does WordPress send data about your blog to WordPress.org or Automattic?
  35. Hiding WordPress REST API v2 endpoints from public viewing
  36. Does WordPress only support HTTP 1.1?
  37. HTTP request on localhost failing
  38. How can I use CURLOPT_USERPWD in wp_remote_post?
  39. How do I troubleshoot responses with WP HTTP API?
  40. The resource was preloaded using link preload but not used within a few seconds
  41. using wp_remote_get to retrieve own url on local host
  42. Using wp-cron in backpress – problems with wp_remote_post, fsockopen error
  43. Running index.php from command line & load balancer health checks
  44. Enable CORS in wordpress
  45. Change port of wordpress
  46. How to get value of custom http header?
  47. Several times request to load plugins when sending one request
  48. why is $_REQUESt[‘redirect_to’] empty?
  49. Get “HTTP/1.1 406 Not Acceptable” when accesing my website with Delphi Indy Control
  50. WordPress HTTP 500 Error “page isn’t working”
  51. Does WordPress perform better with curl installed?
  52. Get full page HTML for a non-public WordPress page
  53. What’s the point in having “www” in a URL?
  54. For what is the “.well-known”-folder?
  55. Human readable format for http headers with tcpdump
  56. How to make wireshark filter POST-requests only?
  57. Image file urls still point to http instead of https
  58. What is the difference between POST and PUT in HTTP?
  59. Chrome hangs after certain amount of data transfered – waiting for available socket
  60. Use of PUT vs PATCH methods in REST API real life scenarios
  61. How do I POST JSON data with cURL?
  62. How to download a file over HTTP?
  63. Axios Delete request with body and headers?
  64. Curl command for https ( SSL )
  65. Response to preflight request doesn’t pass access control check
  66. What is the curl error 52 “empty reply from server”?
  67. Custom Tumblr theme wont save because of non-https urls?
  68. curl: (6) Could not resolve host: google.com; Name or service not known
  69. Binary Data Posting with curl
  70. How do I make curl ignore the proxy?
  71. What could cause “connect ETIMEDOUT” error when the URL is working in browser?
  72. Why does cURL return error “(23) Failed writing body”?
  73. nodejs – first argument must be a string or Buffer – when using response.write with http.request
  74. cURL request in Laravel
  75. Is it safe to use sslverify => true for with wp_remote_get/wp_remote_post
  76. Re use authenticated HTTP connection or cUrl handle
  77. Serving HTTP and HTTPS from one installation
  78. How can I change HTTP headers only to posts of a specific category from a plugin
  79. Login WordPress website using wp-rest api
  80. Broken urls with http site and https wp-admin
  81. Can’t login to Dashboard when changing site URL to HTTPS
  82. Check user logged in from outside of WP folder
  83. Is it possible to access the wp-admin from one instance while keeping WP_HOME pointing to the balancing url?
  84. wrong media url in wordpress
  85. Custom login doesn’t work properly
  86. Allow non-SSL pages to use https or Force non-SSL pages to http?
  87. Why is json_decode failing?
  88. WordPress Users authentication with Java Application
  89. Any any insecure http:// URLs left in wordpress?
  90. Implementing a URL Shortener
  91. Local WordPress with WAMP downloads files out of Nowhere
  92. SOAP Request/Parsing XML From wp_send_json_success
  93. Accessing an API with jQuery and AJAX
  94. Reading URL Parameters
  95. Display values of current POST request on page
  96. Understanding Redirects
  97. Sudden Upload HTTP errors, PHP uploads and memory limits are already to high to my taste. Anything else?
  98. wordpress database error
  99. The plain HTTP request was sent to HTTPS port in wordpress [closed]
  100. Properly process a custom WP REST API request (Authenticate, Authorize + Validate)?

Leave a Comment