Fiddler Auth Inspector should decode BASIC credentials using Encoding.UTF8 not Encoding.Default

Progress® Telerik® Fiddler™ Classic Feedback Portal

Create an account Log In

Back to Feed

Request a Feature Report a Bug

Completed

Last Updated: 07 Dec 2021 10:51 by ADMIN

Eric

Created on: 06 Oct 2020 18:00

Type: Bug Report

Fiddler Auth Inspector should decode BASIC credentials using Encoding.UTF8 not Encoding.Default

Fiddler’s “Auth” Inspector uses Encoding.Default() for decoding base64-encoded BASIC auth credentials. This was common practice at the time this was first written but is now obsolete. https://tools.ietf.org/html/rfc7617, written much later, demands UTF-8.

Chromium and Firefox encodes credentials using UTF-8.

https://source.chromium.org/chromium/chromium/src/+/master:net/http/http_auth_handler_basic.cc;l=89;bpv=1;bpt=1

1 comment

ADMIN

Nick Iliev

Posted on: 07 Dec 2021 10:51

Hey Eric,

The fix will be released with the upcoming new release of Fiddler Classic. The new version will use UTF-8 instead of the Default encoding option.

Regards,
Nick Iliev
Progress Telerik

Love the Telerik and Kendo UI products and believe more people should try them? Invite a fellow developer to become a Progress customer and each of you can get a $50 Amazon gift voucher.