Skip to content

fix websocket basic auth #4747

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
KhafraDev merged 3 commits into from
Jan 19, 2026
Merged

fix websocket basic auth #4747

KhafraDev merged 3 commits into from
Jan 19, 2026

Conversation

@KhafraDev
Copy link
Member

@KhafraDev KhafraDev commented Jan 18, 2026

fixes #4744

KhafraDev and others added 3 commits January 18, 2026 12:45
@KhafraDev @mcollina
fix websocket basic auth
c1a9876 
Co-authored-by: Matteo Collina <hello@matteocollina.com>
@KhafraDev
fixup
14fde20
@KhafraDev
fixup
5f3bae7
@codecov-commenter
Copy link

codecov-commenter commented Jan 18, 2026

Codecov Report

❌ Patch coverage is 78.09524% with 23 lines in your changes missing coverage. Please review.
✅ Project coverage is 92.94%. Comparing base (250efc8) to head (5f3bae7).

Files with missing lines Patch % Lines
lib/web/fetch/index.js 68.91% 23 Missing ⚠️
Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #4747      +/-   ##
==========================================
+ Coverage   92.89%   92.94%   +0.04%     
==========================================
  Files         109      109              
  Lines       33886    33981      +95     
==========================================
+ Hits        31478    31582     +104     
+ Misses       2408     2399       -9

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

mcollina
mcollina approved these changes Jan 19, 2026
View reviewed changes
Copy link
Member

@mcollina mcollina left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

@KhafraDev KhafraDev merged commit 3388513 into nodejs:main Jan 19, 2026
38 of 40 checks passed
@KhafraDev KhafraDev deleted the websocket-basic-auth branch January 19, 2026 21:35
@github-actions github-actions bot mentioned this pull request Jan 21, 2026
Merged
killagu added a commit to killagu/undici that referenced this pull request Jan 22, 2026
@killagu @claude
fix(fetch): prevent infinite retry loop on 401 responses
36886de 
`isTraversableNavigable()` was returning `true` unconditionally, which
caused an infinite retry loop when the server responded with 401.

In Node.js environment, there is no traversable navigable that can
prompt the user for credentials (unlike browsers). The 401 retry logic
at step 14 of HTTP-network-or-cache fetch requires user interaction to
provide credentials, which is not possible in Node.js.

Returning `false` disables the incomplete 401 retry logic that was
causing the infinite loop, while preserving the URL credentials
functionality added in nodejs#4747.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
@killagu killagu mentioned this pull request Jan 22, 2026
Closed
7 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mcollina mcollina mcollina approved these changes

@metcoder95 metcoder95 metcoder95 approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

WebSocket (and probably fetch) does not support Authorization header from URL

4 participants

@KhafraDev @codecov-commenter @mcollina @metcoder95