b5c496f109
Added !SSPI to the features list of the HTTP digest tests, as SSPI based builds now use the Windows SSPI messaging API rather than the internal functions, and we can't control the random numbers that get used as part of the digest.
109 lines
2.0 KiB
Plaintext
109 lines
2.0 KiB
Plaintext
<testcase>
|
|
<info>
|
|
<keywords>
|
|
HTTP
|
|
HTTP GET
|
|
HTTP NTLM auth
|
|
connection re-use
|
|
</keywords>
|
|
</info>
|
|
# Server-side
|
|
<reply>
|
|
<servercmd>
|
|
connection-monitor
|
|
</servercmd>
|
|
|
|
<data>
|
|
HTTP/1.1 401 Authentication please!
|
|
Content-Length: 20
|
|
WWW-Authenticate: Digest realm="loonie", nonce="314156592"
|
|
WWW-Authenticate: Basic
|
|
|
|
Please auth with me
|
|
</data>
|
|
|
|
# This is supposed to be returned when the server gets the second
|
|
# Authorization: NTLM line passed-in from the client
|
|
<data1000>
|
|
HTTP/1.1 200 Things are fine in server land
|
|
Server: Microsoft-IIS/5.0
|
|
Content-Length: 4
|
|
|
|
moo
|
|
</data1000>
|
|
|
|
<data1003>
|
|
HTTP/1.1 200 OK
|
|
Server: Another one/1.0
|
|
Content-Length: 4
|
|
|
|
boo
|
|
</data1003>
|
|
|
|
# This is the first reply after the redirection
|
|
<data1011>
|
|
HTTP/1.1 200 OK
|
|
Server: Microsoft-IIS/5.0
|
|
Content-Type: text/html; charset=iso-8859-1
|
|
Content-Length: 34
|
|
|
|
This is not the real page either!
|
|
</data1011>
|
|
|
|
<datacheck>
|
|
HTTP/1.1 401 Authentication please!
|
|
Content-Length: 20
|
|
WWW-Authenticate: Digest realm="loonie", nonce="314156592"
|
|
WWW-Authenticate: Basic
|
|
|
|
HTTP/1.1 200 Things are fine in server land
|
|
Server: Microsoft-IIS/5.0
|
|
Content-Length: 4
|
|
|
|
moo
|
|
</datacheck>
|
|
|
|
</reply>
|
|
|
|
# Client-side
|
|
<client>
|
|
<server>
|
|
http
|
|
</server>
|
|
<features>
|
|
!SSPI
|
|
crypto
|
|
</features>
|
|
<name>
|
|
HTTP with --anyauth and connection re-use
|
|
</name>
|
|
<command>
|
|
http://%HOSTIP:%HTTPPORT/1418 -u testuser:testpass --anyauth http://%HOSTIP:%HTTPPORT/14180003
|
|
</command>
|
|
</client>
|
|
|
|
# Verify data after the test has been "shot"
|
|
<verify>
|
|
<strip>
|
|
^User-Agent:.*
|
|
</strip>
|
|
<protocol>
|
|
GET /1418 HTTP/1.1
|
|
Host: %HOSTIP:%HTTPPORT
|
|
Accept: */*
|
|
|
|
GET /1418 HTTP/1.1
|
|
Authorization: Digest username="testuser", realm="loonie", nonce="314156592", uri="/1418", response="986238b7e0077754944c966f56d9bc77"
|
|
Host: %HOSTIP:%HTTPPORT
|
|
Accept: */*
|
|
|
|
GET /14180003 HTTP/1.1
|
|
Authorization: Digest username="testuser", realm="loonie", nonce="314156592", uri="/14180003", response="1c6390a67bac3283a9b023402f3b3540"
|
|
Host: %HOSTIP:%HTTPPORT
|
|
Accept: */*
|
|
|
|
[DISCONNECT]
|
|
</protocol>
|
|
</verify>
|
|
</testcase>
|