test2066 2.0 KB

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182
  1. <testcase>
  2. <info>
  3. <keywords>
  4. HTTP
  5. HTTP GET
  6. HTTP Digest auth
  7. </keywords>
  8. </info>
  9. # Server-side
  10. <reply>
  11. <data>
  12. HTTP/1.1 401 Authorization Required
  13. Server: Apache/1.3.27 (Darwin) PHP/4.1.2
  14. WWW-Authenticate: Digest realm="testrealm", nonce="2053604145", algorithm="SHA-256", userhash=true
  15. Content-Type: text/html; charset=iso-8859-1
  16. Content-Length: 26
  17. This is not the real page
  18. </data>
  19. # This is supposed to be returned when the server gets a
  20. # Authorization: Digest line passed-in from the client
  21. <data1000>
  22. HTTP/1.1 401 Still a bad password you moron
  23. Server: Apache/1.3.27 (Darwin) PHP/4.1.2
  24. Content-Type: text/html; charset=iso-8859-1
  25. Content-Length: 34
  26. This is not the real page either
  27. </data1000>
  28. <datacheck>
  29. HTTP/1.1 401 Authorization Required
  30. Server: Apache/1.3.27 (Darwin) PHP/4.1.2
  31. WWW-Authenticate: Digest realm="testrealm", nonce="2053604145", algorithm="SHA-256", userhash=true
  32. Content-Type: text/html; charset=iso-8859-1
  33. Content-Length: 26
  34. HTTP/1.1 401 Still a bad password you moron
  35. Server: Apache/1.3.27 (Darwin) PHP/4.1.2
  36. Content-Type: text/html; charset=iso-8859-1
  37. Content-Length: 34
  38. This is not the real page either
  39. </datacheck>
  40. </reply>
  41. # Client-side
  42. <client>
  43. <server>
  44. http
  45. </server>
  46. <features>
  47. !SSPI
  48. crypto
  49. </features>
  50. <name>
  51. HTTP with RFC7616 Digest authorization with bad password, SHA-256 and userhash=true
  52. </name>
  53. <command>
  54. http://%HOSTIP:%HTTPPORT/%TESTNUMBER -u testuser:test2pass --digest
  55. </command>
  56. </client>
  57. # Verify data after the test has been "shot"
  58. <verify>
  59. <protocol>
  60. GET /%TESTNUMBER HTTP/1.1
  61. Host: %HOSTIP:%HTTPPORT
  62. User-Agent: curl/%VERSION
  63. Accept: */*
  64. GET /%TESTNUMBER HTTP/1.1
  65. Host: %HOSTIP:%HTTPPORT
  66. Authorization: Digest username="75af8a3500f771e58a52093a25e7905d6e428a511285c12ea1420c73078dfd61", realm="testrealm", nonce="2053604145", uri="/%TESTNUMBER", response="374a35326cc09e7d1ec3165aee9de01cae46daac33d8999aa1f483fa7882b86c", algorithm=SHA-256, userhash=true
  67. User-Agent: curl/%VERSION
  68. Accept: */*
  69. </protocol>
  70. </verify>
  71. </testcase>