cookies session-cookies basic-authentication okhttp

Android OkHttp Basic Auth with session cookie

I am using OkHttp 3.x, and I need to authenticate to a server via Basic Auth. The server returns a JSESSIONID cookie upon successful authentication.

I have setup a CookieJar to store the returned cookie, and to send it back to the server (and it is well received).

However, at the moment I send the credentials via headers, and even though i send the cookie, the Basic Auth credentials are still sent.

How can I send the Basic Auth credentials only if the cookie is not set ? I would like to avoid using reactive authentication to avoid generating 401 on the server.

Solution

The easiest way to strip an unwanted header is with an interceptor. Check for the presence of the cookie, and strip the Authorization header if the cookie is present.

How to set 'SameSite' on a cookie from within a Java application?
How can I create and test two web apps in two separate application pools on my local machine?
How to generate COMMON KEY RING to Share cookies across subdomains?
Warning: Text content did not match. Server: "I'm out" Client: "I'm in" div
Header sent error express.js with cookie-parser
How is the missing path attribute of a cookie computed or handled in a Single Page Application?
How to tell why a cookie is not being sent?
User not Signed in after SignInManager.PasswordSignInAsync method Call
iPhone Facebook connect : "Cookies required"
Cookie XSRF-TOKEN created without the httponly flag - Laravel 5.8
Unable to get Cookie value when Jotform redirects user to another page
Cookie LoginPath not redirecting to path
Yahoo Finance V7 API now requiring cookies? (Python)
Laravel Test Cookie is Encrypted Despite Being Excluded from EncryptCookies Middleware
NextJS: Why NextResponse.redirect is not triggering on production
How to copy cookies in Google Chrome?
How do sites like quora track users without cookies?
How to save the browser sessions in Selenium?
Trouble setting cookies in Express backend for Next.js frontend use
Cookies getting disappeared when page refreshes
Read Flask Session Cookie
Laravel 5: cookie set by custom Middleware not readable in Controller
Is storing an OAuth token in cookies bad practice?
How do I create and read a value from cookie with javascript?
If I set AccessToken and RefreshToken both (JWT) as cookies by server, They both automatically will be sent to server in each request from client
How many bytes in one round-trip for an HTTP/2 browser request over mobile networks?
Cant get claims in authorization handler
Why cookies dont expire after closing browser?
How to specify SameSite value for javax.servlet.http.Cookie
After a user opts out of Cookies, can I remove the cookie?