When using HTTP authentication, we currently check, that the username passed to the user.login method matches the one provided by the web server. A better implementation would be to always use the name provided by the web server and ignore the one passed in user.login.

This issue was reported by Vitaly Shupak in ZBX-7703.
https://support.zabbix.com/browse/ZBX-7703?focusedCommentId=100225&page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel#comment-100225