HTTP Authentication login failure Return Code handling usecases - Proficient Error Handling with hx-target-error and hx-responseError
When comes to User experience while tries to perform login authentication. while provides individual credential to gain access and authorisation via HTTP authentication framework. it's often poses challenge to provide helpful information to user hinting what had happened upon a login failure.
This round of article meant to demontrate 2 approaches to proficiently handle HTTP client error responses code, whenever submitted credential via form submission doesn't matched with users database.
Htmx gives us access to AJAX directly in HTML by using attributes and provides an extensive events system that can be used to modify and enhance behavior. As per article title, we'll focus on below htmx extension and events attributes.
- hx-target-error
This extension allows you to specify different target elements to be swapped when different HTTP response codes are received.
- hx-responseError
This event is triggered when an HTTP error response occurs
HTTP client error responses code, specifically 401 Unauthorized inform client must authenticate itself to get the requested response. Generally it may return in many forms as below whenever there is any HTTP authentication failure.
- HTTP Error 401 Unauthorized
- 401 Unauthorized Error
- Error 401 Unauthorized
- Access Denied
- 401 Authorization Required
This article meant to focus on below 2 solutions. Both solutions provide unique way to handle HTTP resposne error to display desired message to users. htmx provides 2 htmx attributes capable to listens on error events, then perform certain action.
response-targets extension
This extension allows you to specify different target elements to be swapped when different HTTP response codes are received.
It uses attribute names in a form of hx-target-[CODE] where [CODE] is a numeric HTTP response code with the optional wildcard character at its end. You can also use hx-target-error, which handles both 4xx and 5xx response codes.
- Install htmx extension package via CDN
<script src="https://unpkg.com/htmx-ext-response-targets@2.0.0/response-targets.js"></script>- Add htmx hx-ext attribute into parent div element to enables an htmx extension and inherit to all child element.
- Specify desired HTTP error code to handle by using hx-target-[CODE]. [CODE] allows to customise both 4xx and 5xx response codes. for this instance, hx-target-401 will be spedified, and target element id.
- Specify hx-target element id to display your friendly message with successful authentication.
<div hx-ext="response-targets">
<form hx-post="/login_swap" hx-target-401="#responsediv" hx-target="div#responsediv">
Username: <input name="Username"><br>
Password: <input name="password" type=password><br>
<button type="submit">Log In</button>
</form>
<div id="responsediv">
</div>
</div>
Htmx provides an extensive events system that can be used to modify and enhance behavior. "htmx:responseError" event triggered when an HTTP error response occurs. For this instance, java alert used to demonstrate the action to handling error with message prompt. success velidation return with submitted username.
Use hx-on attributes to embed scripts inline to respond to events directly on an element enable response-error trigger an action when HTTP response error received.
<div>
<form hx-post="/login_prompt" hx-on:htmx:response-error="alert('Incorrect Username or Password Credential')" hx-target="#successdiv">
Username: <input name="Username"><br>
Password: <input name="password" type=password><br>
<button type="submit">Log In</button>
</form>
</div>As highlighted above, hx-on allow to embed scripts inline to respond to events directly. which allows to implement javascript with conditional statement to specifically handles error code trigger action similar to hx-target-[code].
<form hx-post="/login_prompt" hx-on:htmx:response-error="if(event.detail.xhr.status == 401)
{ alert('Error: Incorrect Username or Password Credential') }"
hx-target="#successdiv"> 
Both solutions generally allow to achieve similar outcome. By captures HTTP return client error responses from server, allows more granular use case control and error handles. hx-target-[error] to impplementation given much more easy and direct in adjusting and finetune whenever there is new requirement arises when comes to return HTTP code. on the other hand, if your requirement needs more customisation on codition and action based on specidic use cases, response-error would be preferable. All in all, these are the 2 approaches able to help when need to have more granular control when comes to error handling.
git clone https://github.com/scheehan/http_auth_error_handling_with_htmx.gitcd http_auth_error_handling_with_htmx
pip install -r requirements.txtflask run --debug