From 4d3930d149a1ea3bcbc489187e7d50d23196e9da Mon Sep 17 00:00:00 2001
From: Jonathan Hefner <jonathan@hefner.pro>
Date: Sat, 12 Feb 2022 16:15:12 -0600
Subject: [PATCH] Explain HTTP basic authentication stipulation [ci-skip]

This clarifies that, after successfully authenticating, the HTTP basic
authentication challenge will not appear again when refreshing the page.

Fixes #39741.
---
 guides/source/getting_started.md | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/guides/source/getting_started.md b/guides/source/getting_started.md
index f0a3ee9ade..f8fcbcc46d 100644
--- a/guides/source/getting_started.md
+++ b/guides/source/getting_started.md
@@ -2063,6 +2063,9 @@ Authentication challenge:
 
 ![Basic HTTP Authentication Challenge](images/getting_started/challenge.png)
 
+After entering the correct username and password, you will remain authenticated
+until a different username and password is required or the browser is closed.
+
 Other authentication methods are available for Rails applications. Two popular
 authentication add-ons for Rails are the
 [Devise](https://github.com/plataformatec/devise) rails engine and