Paul Read wrote:
@Paul: Does that fix the issue?
Yes! :-)
Thanks, I just checked in a fix, rev. #861
Log:
Digest Authentication - Fixed backward compatibility with RFC 2069.
- Handle more than one qop and algorithm in server challenge.
Available via SVN now or included in the next nightly
la
part de Arno Garrels
Envoyé : mardi 10 janvier 2012 13:41
À : ICS support mailing
Objet : Re: [twsocket] Digest authentication via THttpCli?
Paul Read wrote:
@Paul: Does that fix the issue?
Yes! :-)
Thanks, I just checked in a fix, rev. #861
Log:
Digest Authentication - Fixed backward
François Piette wrote:
Maybe a new component options would let the developer select the
behaviour ? Or maybe first try with on option and then automatically
switch to the other if it fails ?
Think I found the bug in OverbyteIcsDigestAuth.pas, will update SVN
later :
{code}
procedure
@Paul: Does that fix the issue?
Yes! :-)
On 09/01/2012 10:36, Arno Garrels wrote:
François Piette wrote:
Maybe a new component options would let the developer select the
behaviour ? Or maybe first try with on option and then automatically
switch to the other if it fails ?
Think I found
Paul Read wrote:
THanks for that information I therefore tweaked
'AuthDigestParseChallenge' so that Info.Qop is set to 'auth' if no Qop
value is given and now the right MD5 is calculated and the server
accepts the data.
I'd say this is a server-side bug. It obviously understands a RFC 2617
Hello,
This is what MSDN says about it :
The qop-options directive, as specified in [RFC2617] section 3.2.1, is
optional; but it is used for backward compatibility with digest access
authentication, as specified in [RFC2069]. The qop-options directive
SHOULD be used by all implementations
Arno Garrels wrote:
Paul Read wrote:
THanks for that information I therefore tweaked
'AuthDigestParseChallenge' so that Info.Qop is set to 'auth' if no
Qop value is given and now the right MD5 is calculated and the server
accepts the data.
I'd say this is a server-side bug.
Though it
Component Suite (ICS)
http://www.overbyte.be
-Message d'origine-
De : twsocket-boun...@elists.org [mailto:twsocket-boun...@elists.org] De la
part de Arno Garrels
Envoyé : dimanche 8 janvier 2012 19:30
À : ICS support mailing
Objet : Re: [twsocket] Digest authentication via THttpCli?
Arno
Paul Read wrote:
I was using version 708 using the latest (721) I now at least get the
response to the 401 being sent back :-)
But still the request is rejected by the server. Wireshark shows
that the digest authorization response calculated by ICS is different
to that calculated by cURL.
Please post the server challenge,
What does this look like?
does it by any chance request auth-int? auth-int is not supported yet.
I don't see 'auth-int' within the packets but maybe I am looking in the right
area.
The first response from the server is:
HTTP/1.1 401 Unauthorized
Server:
Paul Read wrote:
Please post the server challenge,
What does this look like?
does it by any chance request auth-int? auth-int is not supported
yet.
I don't see 'auth-int' within the packets but maybe I am looking in
the right area.
The first response from the server is:
Still struggling to post data via THttpCli using Digest Authentication.
Looking via Wireshark I can see that THttpCli did not response to the
401 Unauthorized sent by the server, so the data I want to send does
not get through (whilst if I use cURL it works fine).
I have configured THttpCli
Paul Read wrote:
Still struggling to post data via THttpCli using Digest
Authentication.
Looking via Wireshark I can see that THttpCli did not response to the
401 Unauthorized sent by the server,
What ICS version do you use? THttpCli got some fixes recently related to
authentication
On 06-01-2012 17:31, Arno Garrels wrote:
What do you mean by cURL?
http://curl.haxx.se/
--
To unsubscribe or change your settings for TWSocket mailing list
please goto http://lists.elists.org/cgi-bin/mailman/listinfo/twsocket
Visit our website at http://www.overbyte.be
RTT wrote:
On 06-01-2012 17:31, Arno Garrels wrote:
What do you mean by cURL? http://curl.haxx.se/
:-) I thought it's some kind of URL/URI I never heard of.
--
Arno Garrels
--
To unsubscribe or change your settings for TWSocket mailing list
please goto
What ICS version do you use? THttpCli got some fixes recently related to
authentication AFAIR. Try latest ICSv7 from here:
http://wiki.overbyte.be/wiki/index.php/ICS_Download
I was using version 708 using the latest (721) I now at least get the response
to the 401 being sent back :-)
But
Stepping through ICS source I can see AuthDigestCalcResponse is called
and the MD5 response is calculated. I note Qop is empty.
What aspects of THttpCli can effect the calculated digest response?
Paul
On 06/01/2012 22:27, Paul Read wrote:
What ICS version do you use? THttpCli got some
The server I am trying to connect to, via my C++Builder 2007 application
using ICS, requires Digest Authentication.
To use THttpCli do I simply set the Username and Password properties,
set the ServerAuth property to httpAuthDigest and then call SendStream?
Many thanks
Paul
--
To unsubscribe
18 matches
Mail list logo