123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296 |
- <testcase>
- <info>
- <keywords>
- HTTP
- HTTP GET
- HTTP Digest auth
- HTTP NTLM auth
- </keywords>
- </info>
- # Server-side
- <reply>
- <!-- Alternate the order that Digest and NTLM headers appear in responses to
- ensure that the order doesn't matter. -->
- <!--
- Explanation for the duplicate 400 requests:
- libcurl doesn't detect that a given Digest password is wrong already on the
- first 401 response (as the data400 gives). libcurl will instead consider the
- new response just as a duplicate and it sends another and detects the auth
- problem on the second 401 response!
- -->
- <!-- First request has NTLM auth, wrong password -->
- <data100>
- HTTP/1.1 401 Need Digest or NTLM auth
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 27
- WWW-Authenticate: NTLM
- WWW-Authenticate: Digest realm="testrealm", nonce="1"
- This is not the real page!
- </data100>
- <data1101>
- HTTP/1.1 401 NTLM intermediate
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 33
- WWW-Authenticate: NTLM TlRMTVNTUAACAAAACAAIADAAAAAGggEAq6U1NAWaJCIAAAAAAAAAAAAAAAA4AAAATlRMTUF1dGg=
- This is still not the real page!
- </data1101>
- <data1102>
- HTTP/1.1 401 Sorry wrong password
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 29
- WWW-Authenticate: Digest realm="testrealm", nonce="2"
- WWW-Authenticate: NTLM
- This is a bad password page!
- </data1102>
- <!-- Second request has Digest auth, right password -->
- <data200>
- HTTP/1.1 401 Need Digest or NTLM auth (2)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 27
- WWW-Authenticate: NTLM
- WWW-Authenticate: Digest realm="testrealm", nonce="3"
- This is not the real page!
- </data200>
- <data1200>
- HTTP/1.1 200 Things are fine in server land
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 32
- Finally, this is the real page!
- </data1200>
- <!-- Third request has NTLM auth, wrong password -->
- <data300>
- HTTP/1.1 401 Need Digest or NTLM auth (3)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 27
- WWW-Authenticate: Digest realm="testrealm", nonce="4"
- WWW-Authenticate: NTLM
- This is not the real page!
- </data300>
- <data1301>
- HTTP/1.1 401 NTLM intermediate (2)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 33
- WWW-Authenticate: NTLM TlRMTVNTUAACAAAACAAIADAAAAAGggEAq6U1NAWaJCIAAAAAAAAAAAAAAAA4AAAATlRMTUF1dGg=
- This is still not the real page!
- </data1301>
- <data1302>
- HTTP/1.1 401 Sorry wrong password (2)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 29
- WWW-Authenticate: NTLM
- WWW-Authenticate: Digest realm="testrealm", nonce="5"
- This is a bad password page!
- </data1302>
- <!-- Fourth request has Digest auth, wrong password -->
- <data400>
- HTTP/1.1 401 Need Digest or NTLM auth (4)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 27
- WWW-Authenticate: Digest realm="testrealm", nonce="6"
- WWW-Authenticate: NTLM
- This is not the real page!
- </data400>
- <data1400>
- HTTP/1.1 401 Sorry wrong password (3)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 29
- WWW-Authenticate: NTLM
- WWW-Authenticate: Digest realm="testrealm", nonce="7"
- This is a bad password page!
- </data1400>
- <!-- Fifth request has Digest auth, right password -->
- <data500>
- HTTP/1.1 401 Need Digest or NTLM auth (5)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 27
- WWW-Authenticate: Digest realm="testrealm", nonce="8"
- WWW-Authenticate: NTLM
- This is not the real page!
- </data500>
- <data1500>
- HTTP/1.1 200 Things are fine in server land (2)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 32
- Finally, this is the real page!
- </data1500>
- <datacheck>
- HTTP/1.1 401 NTLM intermediate
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 33
- WWW-Authenticate: NTLM TlRMTVNTUAACAAAACAAIADAAAAAGggEAq6U1NAWaJCIAAAAAAAAAAAAAAAA4AAAATlRMTUF1dGg=
- HTTP/1.1 401 Sorry wrong password
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 29
- WWW-Authenticate: Digest realm="testrealm", nonce="2"
- WWW-Authenticate: NTLM
- This is a bad password page!
- HTTP/1.1 200 Things are fine in server land
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 32
- Finally, this is the real page!
- HTTP/1.1 401 NTLM intermediate (2)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 33
- WWW-Authenticate: NTLM TlRMTVNTUAACAAAACAAIADAAAAAGggEAq6U1NAWaJCIAAAAAAAAAAAAAAAA4AAAATlRMTUF1dGg=
- HTTP/1.1 401 Sorry wrong password (2)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 29
- WWW-Authenticate: NTLM
- WWW-Authenticate: Digest realm="testrealm", nonce="5"
- This is a bad password page!
- HTTP/1.1 401 Sorry wrong password (3)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 29
- WWW-Authenticate: NTLM
- WWW-Authenticate: Digest realm="testrealm", nonce="7"
- HTTP/1.1 401 Sorry wrong password (3)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 29
- WWW-Authenticate: NTLM
- WWW-Authenticate: Digest realm="testrealm", nonce="7"
- This is a bad password page!
- HTTP/1.1 200 Things are fine in server land (2)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 32
- Finally, this is the real page!
- </datacheck>
- </reply>
- # Client-side
- <client>
- <features>
- NTLM
- </features>
- <server>
- http
- </server>
- <tool>
- libauthretry
- </tool>
- <name>
- HTTP authorization retry (NTLM switching to Digest)
- </name>
- <setenv>
- # we force our own host name, in order to make the test machine independent
- CURL_GETHOSTNAME=curlhost
- # we try to use the LD_PRELOAD hack, if not a debug build
- LD_PRELOAD=%PWD/libtest/.libs/libhostname.so
- </setenv>
- <command>
- http://%HOSTIP:%HTTPPORT/2030 ntlm digest
- </command>
- <precheck>
- chkhostname curlhost
- </precheck>
- </client>
- # Verify data after the test has been "shot"
- <verify>
- <strip>
- ^User-Agent:.*
- </strip>
- <protocol>
- GET /20300100 HTTP/1.1
- Authorization: NTLM TlRMTVNTUAABAAAABoIIAAAAAAAAAAAAAAAAAAAAAAA=
- Host: %HOSTIP:%HTTPPORT
- Accept: */*
- GET /20300100 HTTP/1.1
- Authorization: NTLM TlRMTVNTUAADAAAAGAAYAEAAAAAYABgAWAAAAAAAAABwAAAACAAIAHAAAAAIAAgAeAAAAAAAAAAAAAAABoIBANgKEcT5xUUBHw5+0m4FjWTGNzg6PeHJHbaPwNwCt/tXcnIeTQCTMAg12SPDyNXMf3Rlc3R1c2VyY3VybGhvc3Q=
- Host: %HOSTIP:%HTTPPORT
- Accept: */*
- GET /20300200 HTTP/1.1
- Authorization: Digest username="testuser", realm="testrealm", nonce="2", uri="/20300200", response="2f2d784ba53a0a307758a90e98d25c27"
- Host: %HOSTIP:%HTTPPORT
- Accept: */*
- GET /20300300 HTTP/1.1
- Authorization: NTLM TlRMTVNTUAABAAAABoIIAAAAAAAAAAAAAAAAAAAAAAA=
- Host: %HOSTIP:%HTTPPORT
- Accept: */*
- GET /20300300 HTTP/1.1
- Authorization: NTLM TlRMTVNTUAADAAAAGAAYAEAAAAAYABgAWAAAAAAAAABwAAAACAAIAHAAAAAIAAgAeAAAAAAAAAAAAAAABoIBANgKEcT5xUUBHw5+0m4FjWTGNzg6PeHJHbaPwNwCt/tXcnIeTQCTMAg12SPDyNXMf3Rlc3R1c2VyY3VybGhvc3Q=
- Host: %HOSTIP:%HTTPPORT
- Accept: */*
- GET /20300400 HTTP/1.1
- Authorization: Digest username="testuser", realm="testrealm", nonce="5", uri="/20300400", response="d6262e9147db08c62ff2f53b515861e8"
- Host: %HOSTIP:%HTTPPORT
- Accept: */*
- GET /20300400 HTTP/1.1
- Authorization: Digest username="testuser", realm="testrealm", nonce="5", uri="/20300400", response="d6262e9147db08c62ff2f53b515861e8"
- Host: %HOSTIP:%HTTPPORT
- Accept: */*
- GET /20300500 HTTP/1.1
- Authorization: Digest username="testuser", realm="testrealm", nonce="7", uri="/20300500", response="198757e61163a779cf24ed4c49c1ad7d"
- Host: %HOSTIP:%HTTPPORT
- Accept: */*
- </protocol>
- </verify>
- </testcase>
|