I am working on an Android application where I login into a banking site . I am able to login successfully with HTTP request and response handling.
But when I enter a wrong username and password in the native android application I am not able to capture that response from HTTP. If I enter a wrong password instead of logging in, it launches a webpage in the webview. But I should override this in my native application.
How can I capture wrong password response from HTTP?
It sounds kind of tacky to go about this without a proper API. Anyways, one way of capturing the response has already been mentioned: parse the HTML and figure out based on the content wether login was successfull.
However, depending on the behavior of the bank's website, you might be able to suffice with checking the URL, if for example it redirects you to an error page. From your description it appears you're using a WebView, so you may want take a look at the WebViewClient's shouldOverrideUrlLoading (WebView view, String url) to do a check on the URL that is about to be loaded. An example of using this method can be found here.
Your problem is that the site you connect to is returning a 200 OK when you supply the incorrect username and password, which is perfectly natural for a web application. You have to parse the HTML result and handle a "Wrong username or password" message as an "Access denied".
