123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272 |
- <testcase>
- <info>
- <keywords>
- HTTP
- HTTP GET
- HTTP Basic auth
- HTTP NTLM auth
- </keywords>
- </info>
- # Server-side
- <reply>
- <!-- Alternate the order that Basic and NTLM headers appear in responses to
- ensure that the order doesn't matter. -->
- <!-- First request has Basic auth, wrong password -->
- <data100>
- HTTP/1.1 401 Sorry wrong password
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 29
- WWW-Authenticate: NTLM
- WWW-Authenticate: Basic realm="testrealm"
- This is a bad password page!
- </data100>
- <!-- Second request has NTLM auth, right password -->
- <data200>
- HTTP/1.1 401 Need Basic or NTLM auth
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 27
- WWW-Authenticate: Basic realm="testrealm"
- WWW-Authenticate: NTLM
- This is not the real page!
- </data200>
- <data1201>
- HTTP/1.1 401 NTLM intermediate
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 33
- WWW-Authenticate: NTLM TlRMTVNTUAACAAAACAAIADAAAAAGggEAq6U1NAWaJCIAAAAAAAAAAAAAAAA4AAAATlRMTUF1dGg=
- This is still not the real page!
- </data1201>
- <data1202>
- HTTP/1.1 200 Things are fine in server land
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 32
- Finally, this is the real page!
- </data1202>
- <!-- Third request has Basic auth, wrong password -->
- <data300>
- HTTP/1.1 401 Sorry wrong password (2)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 29
- WWW-Authenticate: NTLM
- WWW-Authenticate: Basic realm="testrealm"
- This is a bad password page!
- </data300>
- <!-- Fourth request has NTLM auth, wrong password -->
- <data400>
- HTTP/1.1 401 Need Basic or NTLM auth (2)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 27
- WWW-Authenticate: Basic realm="testrealm"
- WWW-Authenticate: NTLM
- This is not the real page!
- </data400>
- <data1401>
- HTTP/1.1 401 NTLM intermediate (2)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 33
- WWW-Authenticate: NTLM TlRMTVNTUAACAAAACAAIADAAAAAGggEAq6U1NAWaJCIAAAAAAAAAAAAAAAA4AAAATlRMTUF1dGg=
- This is still not the real page!
- </data1401>
- <data1402>
- HTTP/1.1 401 Sorry wrong password (3)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 29
- WWW-Authenticate: NTLM
- WWW-Authenticate: Basic realm="testrealm"
- This is a bad password page!
- </data1402>
- <!-- Fifth request has NTLM auth, right password -->
- <data500>
- HTTP/1.1 401 Need Basic or NTLM auth (3)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 27
- WWW-Authenticate: Basic realm="testrealm"
- WWW-Authenticate: NTLM
- This is not the real page!
- </data500>
- <data1501>
- HTTP/1.1 401 NTLM intermediate (3)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 33
- WWW-Authenticate: NTLM TlRMTVNTUAACAAAACAAIADAAAAAGggEAq6U1NAWaJCIAAAAAAAAAAAAAAAA4AAAATlRMTUF1dGg=
- This is still not the real page!
- </data1501>
- <data1502>
- HTTP/1.1 200 Things are fine in server land (2)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 32
- Finally, this is the real page!
- </data1502>
- <datacheck>
- HTTP/1.1 401 Sorry wrong password
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 29
- WWW-Authenticate: NTLM
- WWW-Authenticate: Basic realm="testrealm"
- This is a bad password page!
- HTTP/1.1 401 NTLM intermediate
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 33
- WWW-Authenticate: NTLM TlRMTVNTUAACAAAACAAIADAAAAAGggEAq6U1NAWaJCIAAAAAAAAAAAAAAAA4AAAATlRMTUF1dGg=
- HTTP/1.1 200 Things are fine in server land
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 32
- Finally, this is the real page!
- HTTP/1.1 401 Sorry wrong password (2)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 29
- WWW-Authenticate: NTLM
- WWW-Authenticate: Basic realm="testrealm"
- This is a bad password page!
- HTTP/1.1 401 NTLM intermediate (2)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 33
- WWW-Authenticate: NTLM TlRMTVNTUAACAAAACAAIADAAAAAGggEAq6U1NAWaJCIAAAAAAAAAAAAAAAA4AAAATlRMTUF1dGg=
- HTTP/1.1 401 Sorry wrong password (3)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 29
- WWW-Authenticate: NTLM
- WWW-Authenticate: Basic realm="testrealm"
- This is a bad password page!
- HTTP/1.1 401 NTLM intermediate (3)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 33
- WWW-Authenticate: NTLM TlRMTVNTUAACAAAACAAIADAAAAAGggEAq6U1NAWaJCIAAAAAAAAAAAAAAAA4AAAATlRMTUF1dGg=
- HTTP/1.1 200 Things are fine in server land (2)
- Server: Microsoft-IIS/5.0
- Content-Type: text/html; charset=iso-8859-1
- Content-Length: 32
- Finally, this is the real page!
- </datacheck>
- </reply>
- # Client-side
- <client>
- <features>
- NTLM
- !SSPI
- </features>
- <server>
- http
- </server>
- <tool>
- libauthretry
- </tool>
- <name>
- HTTP authorization retry (Basic switching to NTLM)
- </name>
- <setenv>
- # we force our own host name, in order to make the test machine independent
- CURL_GETHOSTNAME=curlhost
- # we try to use the LD_PRELOAD hack, if not a debug build
- LD_PRELOAD=%PWD/libtest/.libs/libhostname.so
- </setenv>
- <command>
- http://%HOSTIP:%HTTPPORT/2025 basic ntlm
- </command>
- <precheck>
- chkhostname curlhost
- </precheck>
- </client>
- # Verify data after the test has been "shot"
- <verify>
- <strip>
- ^User-Agent:.*
- </strip>
- <protocol>
- GET /20250100 HTTP/1.1
- Authorization: Basic dGVzdHVzZXI6d3JvbmdwYXNz
- Host: %HOSTIP:%HTTPPORT
- Accept: */*
- GET /20250200 HTTP/1.1
- Authorization: NTLM TlRMTVNTUAABAAAABoIIAAAAAAAAAAAAAAAAAAAAAAA=
- Host: %HOSTIP:%HTTPPORT
- Accept: */*
- GET /20250200 HTTP/1.1
- Authorization: NTLM TlRMTVNTUAADAAAAGAAYAEAAAAAYABgAWAAAAAAAAABwAAAACAAIAHAAAAAIAAgAeAAAAAAAAAAAAAAABoIBAI+/Fp9IERAQ74OsdNPbBpg7o8CVwLSO4DtFyIcZHUMKVktWIu92s2892OVpd2JzqnRlc3R1c2VyY3VybGhvc3Q=
- Host: %HOSTIP:%HTTPPORT
- Accept: */*
- GET /20250300 HTTP/1.1
- Authorization: Basic dGVzdHVzZXI6d3JvbmdwYXNz
- Host: %HOSTIP:%HTTPPORT
- Accept: */*
- GET /20250400 HTTP/1.1
- Authorization: NTLM TlRMTVNTUAABAAAABoIIAAAAAAAAAAAAAAAAAAAAAAA=
- Host: %HOSTIP:%HTTPPORT
- Accept: */*
- GET /20250400 HTTP/1.1
- Authorization: NTLM TlRMTVNTUAADAAAAGAAYAEAAAAAYABgAWAAAAAAAAABwAAAACAAIAHAAAAAIAAgAeAAAAAAAAAAAAAAABoIBANgKEcT5xUUBHw5+0m4FjWTGNzg6PeHJHbaPwNwCt/tXcnIeTQCTMAg12SPDyNXMf3Rlc3R1c2VyY3VybGhvc3Q=
- Host: %HOSTIP:%HTTPPORT
- Accept: */*
- GET /20250500 HTTP/1.1
- Authorization: NTLM TlRMTVNTUAABAAAABoIIAAAAAAAAAAAAAAAAAAAAAAA=
- Host: %HOSTIP:%HTTPPORT
- Accept: */*
- GET /20250500 HTTP/1.1
- Authorization: NTLM TlRMTVNTUAADAAAAGAAYAEAAAAAYABgAWAAAAAAAAABwAAAACAAIAHAAAAAIAAgAeAAAAAAAAAAAAAAABoIBAI+/Fp9IERAQ74OsdNPbBpg7o8CVwLSO4DtFyIcZHUMKVktWIu92s2892OVpd2JzqnRlc3R1c2VyY3VybGhvc3Q=
- Host: %HOSTIP:%HTTPPORT
- Accept: */*
- </protocol>
- </verify>
- </testcase>
|