* It contains the `username` and `password` sent.

{* ../../docs_src/security/tutorial006_an_py39.py hl[4,8,12] *}

When you try to open the URL for the first time (or click the "Execute" button in the docs) the browser will ask you for your username and password:

<img src="/img/tutorial/security/image12.png">

## Check the username { #check-the-username }

Here's a more complete example.

labels.replacement=Замена
labels.sessionId=ID сессии
labels.sortOrder=Порядок сортировки
labels.updatedBy=Обновлено
labels.updatedTime=Время обновления
labels.urls=URL-адреса
labels.userAgent=User Agent
labels.username=Имя пользователя
labels.value=Значение
labels.versionNo=Номер версии
labels.cronExpression=Расписание
labels.dayForCleanup=Удалить документы старше указанных дней

labels.replacement=Sostituzione
labels.sessionId=ID sessione
labels.sortOrder=Ordine di ordinamento
labels.updatedBy=Aggiornato da
labels.updatedTime=Ora di aggiornamento
labels.urls=URL
labels.userAgent=User-Agent
labels.username=Nome utente
labels.value=Valore
labels.versionNo=Numero di versione
labels.cronExpression=Pianificazione
labels.dayForCleanup=Elimina documenti precedenti alla data specificata

    public void update(final User user) {
        final String username = user.getName();
        final String password = user.getOriginalPassword();
        changePassword(username, password);
    }

    @Override
    public void delete(final User user) {
        final String username = user.getName();
        if (isTargetUser(username)) {
            executeCommand(deleteCommand, username, StringUtil.EMPTY);
        }
    }

                final String username = account.username();
                if (logger.isDebugEnabled()) {
                    logger.debug("homeAccountId:{} username:{}", homeAccountId, username);
                }
                permissionSet.add(systemHelper.getSearchRoleByUser(homeAccountId));
                permissionSet.add(systemHelper.getSearchRoleByUser(username));

     * @param username the username to authenticate with
     * @param password the password to authenticate with
     */
    public NtlmPasswordAuthentication(String domain, String username, final String password) {
        int ci;

        if (username != null) {
            ci = username.indexOf('@');
            if (ci > 0) {
                domain = username.substring(ci + 1);
                username = username.substring(0, ci);

                    final String username = paramMap.get(CRAWLER_FILE_AUTH + "." + fileAuthName + ".username");
                    final String password = paramMap.get(CRAWLER_FILE_AUTH + "." + fileAuthName + ".password");

                    if (StringUtil.isEmpty(username)) {
                        logger.warn("username is empty. fileAuth:{}", fileAuthName);
                        continue;

     *
     * @param form the login form containing username and password
     * @return the HTML response after login attempt
     */
    @Execute
    public HtmlResponse login(final LoginForm form) {
        validate(form, messages -> {}, () -> asIndexPage(form));
        verifyToken(() -> asIndexPage(form));
        final String username = form.username;
        final String password = form.password;

    private static final long serialVersionUID = 1L;

    /**
     * Constructs a new FessUserNotFoundException with the specified username.
     *
     * @param username the username that was not found
     */
    public FessUserNotFoundException(final String username) {
        super("User is not found: " + username);
    }

    }

    /**
     * Finds a login user by username.
     *
     * @param username the username to search for
     * @return an optional entity containing the found user, or empty if not found
     */
    @Override
    protected OptionalEntity<FessUser> doFindLoginUser(final String username) {
        return userBhv.selectEntity(cb -> {
            cb.query().setName_Equal(username);
        }).map(user -> (FessUser) user);
    }