b5c496f109
Added !SSPI to the features list of the HTTP digest tests, as SSPI based builds now use the Windows SSPI messaging API rather than the internal functions, and we can't control the random numbers that get used as part of the digest.
119 lines
2.8 KiB
Plaintext
119 lines
2.8 KiB
Plaintext
<testcase>
|
|
<info>
|
|
<keywords>
|
|
HTTP
|
|
HTTP GET
|
|
HTTP Digest auth
|
|
--anyauth
|
|
</keywords>
|
|
</info>
|
|
|
|
# Server-side
|
|
<reply>
|
|
<servercmd>
|
|
auth_required
|
|
</servercmd>
|
|
<data>
|
|
HTTP/1.1 401 Authorization Required swsclose
|
|
Server: Apache/1.3.27 (Darwin) PHP/4.1.2
|
|
WWW-Authenticate: Blackmagic realm="gimme all yer s3cr3ts"
|
|
WWW-Authenticate: Basic realm="gimme all yer s3cr3ts"
|
|
WWW-Authenticate: Digest realm="gimme all yer s3cr3ts", nonce="11223344"
|
|
Content-Type: text/html; charset=iso-8859-1
|
|
Connection: close
|
|
|
|
This is not the real page
|
|
</data>
|
|
|
|
# This is supposed to be returned when the server gets a
|
|
# Authorization: Digest line passed-in from the client
|
|
<data1000>
|
|
HTTP/1.1 200 OK swsclose
|
|
Server: Apache/1.3.27 (Darwin) PHP/4.1.2
|
|
Content-Type: text/html; charset=iso-8859-1
|
|
Content-Length: 23
|
|
Connection: close
|
|
|
|
This IS the real page!
|
|
</data1000>
|
|
|
|
# This is the second request
|
|
<data1001>
|
|
HTTP/1.1 200 OK swsclose
|
|
Server: Apache/1.3.27 (Darwin) PHP/4.1.2
|
|
Content-Type: text/html; charset=iso-8859-1
|
|
Content-Length: 23
|
|
Connection: close
|
|
|
|
This IS the second real page!
|
|
</data1001>
|
|
|
|
<datacheck>
|
|
HTTP/1.1 401 Authorization Required swsclose
|
|
Server: Apache/1.3.27 (Darwin) PHP/4.1.2
|
|
WWW-Authenticate: Blackmagic realm="gimme all yer s3cr3ts"
|
|
WWW-Authenticate: Basic realm="gimme all yer s3cr3ts"
|
|
WWW-Authenticate: Digest realm="gimme all yer s3cr3ts", nonce="11223344"
|
|
Content-Type: text/html; charset=iso-8859-1
|
|
Connection: close
|
|
|
|
HTTP/1.1 200 OK swsclose
|
|
Server: Apache/1.3.27 (Darwin) PHP/4.1.2
|
|
Content-Type: text/html; charset=iso-8859-1
|
|
Content-Length: 23
|
|
Connection: close
|
|
|
|
This IS the real page!
|
|
</datacheck>
|
|
|
|
</reply>
|
|
|
|
# Client-side
|
|
<client>
|
|
<server>
|
|
http
|
|
</server>
|
|
<features>
|
|
!SSPI
|
|
crypto
|
|
</features>
|
|
<name>
|
|
HTTP GET with --anyauth with two URLs (picking Digest)
|
|
</name>
|
|
<command>
|
|
http://%HOSTIP:%HTTPPORT/1412 -u testuser:testpass --anyauth http://%HOSTIP:%HTTPPORT/14120001
|
|
</command>
|
|
<file name="log/put1412">
|
|
This is data we upload with PUT
|
|
a second line
|
|
line three
|
|
four is the number of lines
|
|
</file>
|
|
</client>
|
|
|
|
# Verify data after the test has been "shot"
|
|
<verify>
|
|
<strip>
|
|
^User-Agent:.*
|
|
</strip>
|
|
<protocol>
|
|
GET /1412 HTTP/1.1
|
|
Host: %HOSTIP:%HTTPPORT
|
|
Accept: */*
|
|
|
|
GET /1412 HTTP/1.1
|
|
Authorization: Digest username="testuser", realm="gimme all yer s3cr3ts", nonce="11223344", uri="/1412", response="0390dbe89e31adca0413d11f91f30e7f"
|
|
User-Agent: curl/7.10.5 (i686-pc-linux-gnu) libcurl/7.10.5 OpenSSL/0.9.7a ipv6 zlib/1.1.3
|
|
Host: %HOSTIP:%HTTPPORT
|
|
Accept: */*
|
|
|
|
GET /14120001 HTTP/1.1
|
|
Authorization: Digest username="testuser", realm="gimme all yer s3cr3ts", nonce="11223344", uri="/14120001", response="0085df91870374c8bf4e94415e7fbf8e"
|
|
User-Agent: curl/7.10.5 (i686-pc-linux-gnu) libcurl/7.10.5 OpenSSL/0.9.7a ipv6 zlib/1.1.3
|
|
Host: %HOSTIP:%HTTPPORT
|
|
Accept: */*
|
|
|
|
</protocol>
|
|
</verify>
|
|
</testcase>
|