Recently I had to find a concrete solution to HTTP authentication, as SRC-Java currently does not have a real way to authenticate a user other than inlining the the unm and pwd into the URL, which was not a viable option for my situation.
I have posted my solution below. It is comprised of a few tweaks to org.openqa.selenium.server.ProxyHandler and a new class, org.openqa.selenium.server.HttpAuthenticationUtils, which uses commons-httpclient (http://jakarta.apache.org/commons/httpclient/) for the authentication details.
ProxyHandler.java
// ======================================================================== // $Id: ProxyHandler.java,v 1.4 2006/07/24 18:08:15 hainesg Exp $ // Copyright 1991-2005 Mort Bay Consulting Pty. Ltd. // Portions of this file Copyright 2006 ThoughtWorks, Inc. // ------------------------------------------------------------------------ // Licensed under the Apache License, Version 2.0 (the "License"); // you may not use this file except in compliance with the License. // You may obtain a copy of the License at // http://www.apache.org/licenses/LICENSE-2.0 // Unless required by applicable law or agreed to in writing, software // distributed under the License is distributed on an "AS IS" BASIS, // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. // See the License for the specific language governing permissions and // limitations under the License. // ======================================================================== package org.openqa.selenium.server; import org.apache.commons.logging.Log; import org.mortbay.http.*; import org.mortbay.http.handler.AbstractHttpHandler; import org.mortbay.log.LogFactory; import org.mortbay.util.*; import org.mortbay.util.URI; import java.io.ByteArrayOutputStream; import java.io.IOException; import java.io.InputStream; import java.io.PrintWriter; import java.lang.Integer; import java.net.*; import java.util.Enumeration; import java.util.HashMap; import java.util.HashSet; import java.util.Map; import java.util.Set; /* ------------------------------------------------------------ */ /** * Proxy request handler. A HTTP/1.1 Proxy. This implementation uses the JVMs URL implementation to * make proxy requests. * <p/> * The HttpTunnel mechanism is also used to implement the CONNECT method. * * @author Greg Wilkins (gregw) * @author giacof@tiscali.it (chained proxy) * @version $Id: ProxyHandler.java,v 1.4 2006/07/24 18:08:15 hainesg Exp $ */ public class ProxyHandler extends AbstractHttpHandler { private static final long serialVersionUID = 7584007421255039779L; private static Log log = LogFactory.getLog(ProxyHandler.class); private Map authCredentials = new HashMap(); protected Set _proxyHostsWhiteList; protected Set _proxyHostsBlackList; protected int _tunnelTimeoutMs = 250; private boolean _anonymous = false; private transient boolean _chained = false; /* ------------------------------------------------------------ */ /** * Map of leg by leg headers (not end to end). Should be a set, but more efficient string map is * used instead. */ protected StringMap _DontProxyHeaders = new StringMap(); { Object o = new Object(); _DontProxyHeaders.setIgnoreCase(true); _DontProxyHeaders.put(HttpFields.__ProxyConnection, o); _DontProxyHeaders.put(HttpFields.__Connection, o); _DontProxyHeaders.put(HttpFields.__KeepAlive, o); _DontProxyHeaders.put(HttpFields.__TransferEncoding, o); _DontProxyHeaders.put(HttpFields.__TE, o); _DontProxyHeaders.put(HttpFields.__Trailer, o); _DontProxyHeaders.put(HttpFields.__Upgrade, o); } /* ------------------------------------------------------------ */ /** * Map of leg by leg headers (not end to end). Should be a set, but more efficient string map is * used instead. */ protected StringMap _ProxyAuthHeaders = new StringMap(); { Object o = new Object(); _ProxyAuthHeaders.put(HttpFields.__ProxyAuthorization, o); _ProxyAuthHeaders.put(HttpFields.__ProxyAuthenticate, o); } /* ------------------------------------------------------------ */ /** * Map of allows schemes to proxy Should be a set, but more efficient string map is used * instead. */ protected StringMap _ProxySchemes = new StringMap(); { Object o = new Object(); _ProxySchemes.setIgnoreCase(true); _ProxySchemes.put(HttpMessage.__SCHEME, o); _ProxySchemes.put(HttpMessage.__SSL_SCHEME, o); _ProxySchemes.put("ftp", o); } /* ------------------------------------------------------------ */ /** * Set of allowed CONNECT ports. */ protected HashSet _allowedConnectPorts = new HashSet(); { _allowedConnectPorts.add(new Integer(80)); _allowedConnectPorts.add(new Integer(SeleniumServer.DEFAULT_PORT)); _allowedConnectPorts.add(new Integer(8000)); _allowedConnectPorts.add(new Integer(8080)); _allowedConnectPorts.add(new Integer(8888)); _allowedConnectPorts.add(new Integer(443)); _allowedConnectPorts.add(new Integer(8443)); } /* ------------------------------------------------------------ */ /* */ public void start() throws Exception { _chained = System.getProperty("http.proxyHost") != null; super.start(); } /* ------------------------------------------------------------ */ /** * Get proxy host white list. * * @return Array of hostnames and IPs that are proxied, or an empty array if all hosts are * proxied. */ public String[] getProxyHostsWhiteList() { if (_proxyHostsWhiteList == null || _proxyHostsWhiteList.size() == 0) return new String[0]; String[] hosts = new String[_proxyHostsWhiteList.size()]; hosts = (String[]) _proxyHostsWhiteList.toArray(hosts); return hosts; } /* ------------------------------------------------------------ */ /** * Set proxy host white list. * * @param hosts Array of hostnames and IPs that are proxied, or null if all hosts are proxied. */ public void setProxyHostsWhiteList(String[] hosts) { if (hosts == null || hosts.length == 0) _proxyHostsWhiteList = null; else { _proxyHostsWhiteList = new HashSet(); for (int i = 0; i < hosts.length; i++) { String host = hosts[i]; if (host != null && host.trim().length() > 0) _proxyHostsWhiteList.add(host); } } } /* ------------------------------------------------------------ */ /** * Get proxy host black list. * * @return Array of hostnames and IPs that are NOT proxied. */ public String[] getProxyHostsBlackList() { if (_proxyHostsBlackList == null || _proxyHostsBlackList.size() == 0) return new String[0]; String[] hosts = new String[_proxyHostsBlackList.size()]; hosts = (String[]) _proxyHostsBlackList.toArray(hosts); return hosts; } /* ------------------------------------------------------------ */ /** * Set proxy host black list. * * @param hosts Array of hostnames and IPs that are NOT proxied. */ public void setProxyHostsBlackList(String[] hosts) { if (hosts == null || hosts.length == 0) _proxyHostsBlackList = null; else { _proxyHostsBlackList = new HashSet(); for (int i = 0; i < hosts.length; i++) { String host = hosts[i]; if (host != null && host.trim().length() > 0) _proxyHostsBlackList.add(host); } } } /* ------------------------------------------------------------ */ public int getTunnelTimeoutMs() { return _tunnelTimeoutMs; } /* ------------------------------------------------------------ */ /** * Tunnel timeout. IE on win2000 has connections issues with normal timeout handling. This * timeout should be set to a low value that will expire to allow IE to see the end of the * tunnel connection. */ public void setTunnelTimeoutMs(int ms) { _tunnelTimeoutMs = ms; } /* ------------------------------------------------------------ */ public void handle(String pathInContext, String pathParams, HttpRequest request, HttpResponse response) throws HttpException, IOException { URI uri = request.getURI(); // Is this a CONNECT request? if (HttpRequest.__CONNECT.equalsIgnoreCase(request.getMethod())) { response.setField(HttpFields.__Connection, "close"); // TODO Needed for IE???? handleConnect(pathInContext, pathParams, request, response); return; } try { handleHttpAuthRequest(request); // Do we proxy this? URL url = isProxied(uri); if (url == null) { if (isForbidden(uri)) sendForbid(request, response, uri); return; } // is this URL a /selenium URL? if (url.toString().indexOf("/selenium") != -1) { request.setHandled(false); return; } if (log.isDebugEnabled()) log.debug("PROXY URL=" + url); URLConnection connection = url.openConnection(); connection.setAllowUserInteraction(false); // Set method HttpURLConnection http = null; if (connection instanceof HttpURLConnection) { http = (HttpURLConnection) connection; http.setRequestMethod(request.getMethod()); http.setInstanceFollowRedirects(false); } // check connection header String connectionHdr = request.getField(HttpFields.__Connection); if (connectionHdr != null && (connectionHdr.equalsIgnoreCase(HttpFields.__KeepAlive) || connectionHdr.equalsIgnoreCase(HttpFields.__Close))) connectionHdr = null; // copy headers boolean xForwardedFor = false; boolean hasContent = false; Enumeration enm = request.getFieldNames(); while (enm.hasMoreElements()) { // TODO could be better than this! String hdr = (String) enm.nextElement(); if (_DontProxyHeaders.containsKey(hdr) || !_chained && _ProxyAuthHeaders.containsKey(hdr)) continue; if (connectionHdr != null && connectionHdr.indexOf(hdr) >= 0) continue; if (HttpFields.__ContentType.equals(hdr)) hasContent = true; Enumeration vals = request.getFieldValues(hdr); while (vals.hasMoreElements()) { String val = (String) vals.nextElement(); if (val != null) { // don't proxy Referer headers if the referer is Selenium! if ("Referer".equals(hdr) && (-1 != val.indexOf("/selenium-server/core/SeleneseRunner.html"))) { continue; } connection.addRequestProperty(hdr, val); xForwardedFor |= HttpFields.__XForwardedFor.equalsIgnoreCase(hdr); } } } // Proxy headers if (!_anonymous) connection.setRequestProperty("Via", "1.1 (jetty)"); if (!xForwardedFor) connection.addRequestProperty(HttpFields.__XForwardedFor, request.getRemoteAddr()); // a little bit of cache control String cache_control = request.getField(HttpFields.__CacheControl); if (cache_control != null && (cache_control.indexOf("no-cache") >= 0 || cache_control.indexOf("no-store") >= 0)) connection.setUseCaches(false); // customize Connection customizeConnection(pathInContext, pathParams, request, connection); try { connection.setDoInput(true); // do input thang! InputStream in = request.getInputStream(); if (hasContent) { connection.setDoOutput(true); IO.copy(in, connection.getOutputStream()); } // Connect connection.connect(); } catch (Exception e) { LogSupport.ignore(log, e); } InputStream proxy_in = null; // handler status codes etc. int code; if (http != null) { proxy_in = http.getErrorStream(); code = http.getResponseCode(); response.setStatus(code); response.setReason(http.getResponseMessage()); } if (proxy_in == null) { try { proxy_in = connection.getInputStream(); } catch (Exception e) { LogSupport.ignore(log, e); proxy_in = http.getErrorStream(); } } // clear response defaults. response.removeField(HttpFields.__Date); response.removeField(HttpFields.__Server); // set response headers int h = 0; String hdr = connection.getHeaderFieldKey(h); String val = connection.getHeaderField(h); while (hdr != null || val != null) { if (hdr != null && val != null && !_DontProxyHeaders.containsKey(hdr) && (_chained || !_ProxyAuthHeaders.containsKey(hdr))) response.addField(hdr, val); h++; hdr = connection.getHeaderFieldKey(h); val = connection.getHeaderField(h); } if (!_anonymous) response.setField("Via", "1.1 (jetty)"); // Handled request.setHandled(true); if (response.getStatus() == 401){ convertHttpAuthToFormAuth(response, uri.toString()); } else { if (proxy_in != null) IO.copy(proxy_in, response.getOutputStream()); } } catch (Exception e) { e.printStackTrace(); log.warn(e.toString()); LogSupport.ignore(log, e); if (!response.isCommitted()) response.sendError(HttpResponse.__400_Bad_Request); } } public void flushHttpAuthCredentials() { authCredentials.clear(); } /* ------------------------------------------------------------ */ private void convertHttpAuthToFormAuth(HttpResponse response, String uri) throws IOException { String authHeader = response.getHeader().get(HttpFields.__WwwAuthenticate); String authForm = HttpAuthenticationUtils.getHttpAuthForm(authHeader, uri); response.setStatus(200); ByteArrayOutputStream baos = new ByteArrayOutputStream(); PrintWriter writer = new PrintWriter(baos); writer.println(authForm); writer.println(); writer.close(); response.getOutputStream().write(baos.toByteArray()); } /* ------------------------------------------------------------ */ private void handleHttpAuthRequest(HttpRequest request) throws Exception { URI uri = request.getURI(); String strUri = uri.toString(); String origUrlRaw = strUri.replaceAll(".*([?&]origUrl=([^&]+)).*", "$2"); String origUrl = URLDecoder.decode(origUrlRaw); String hostAndPath = HttpAuthenticationUtils.getURIPath( java.net.URI.create(origUrl)); if (uri.toString().indexOf(HttpAuthenticationUtils.AUTH_URI) > -1) { String authType = URLDecoder.decode( strUri.replaceAll(".*([?&]authType=([^&]*)).*", "$2")); authType = (authType == null) ? "" : authType; if (!authType.equals(HttpAuthenticationUtils.NTLM_REDIRECT)) { String challenge = URLDecoder.decode( strUri.replaceAll(".*([?&]challenge=([^&]*)).*", "$2")); challenge = (challenge == null) ? "" : challenge; String userName = URLDecoder.decode( strUri.replaceAll(".*([?&]userName=([^&]*)).*", "$2")); userName = (userName == null) ? "" : userName; String password = URLDecoder.decode( strUri.replaceAll(".*([?&]password=([^&]*)).*", "$2")); password = (password == null) ? "" : password; String ntlmHost = URLDecoder.decode( strUri.replaceAll(".*([?&]host=([^&]*)).*", "$2")); ntlmHost = (ntlmHost == null) ? "" : ntlmHost; String domain = URLDecoder.decode( strUri.replaceAll(".*([?&]domain=([^&]*)).*", "$2")); domain = (domain == null) ? "" : domain; Map authCreds = new HashMap(); authCreds.put("userName", userName); authCreds.put("password", password); authCreds.put("host", ntlmHost); authCreds.put("domain", domain); authCredentials.put(hostAndPath, authCreds); } } Map credMap = (Map) authCredentials.get(hostAndPath); if (credMap != null) { String credString = HttpAuthenticationUtils .doAuthenticate(credMap, uri.toString()); int origState = request.getState(); request.setState(HttpMessage.__MSG_EDITABLE); HttpFields fields = request.getHeader(); fields.add(HttpFields.__Authorization, credString); request.setState(origState); } } /* ------------------------------------------------------------ */ public void handleConnect(String pathInContext, String pathParams, HttpRequest request, HttpResponse response) throws HttpException, IOException { URI uri = request.getURI(); try { if (log.isDebugEnabled()) log.debug("CONNECT: " + uri); InetAddrPort addrPort = new InetAddrPort(uri.toString()); if (isForbidden(HttpMessage.__SSL_SCHEME, addrPort.getHost(), addrPort.getPort(), false)) { sendForbid(request, response, uri); } else { HttpConnection http_connection = request.getHttpConnection(); http_connection.forceClose(); // Get the timeout int timeoutMs = 30000; Object maybesocket = http_connection.getConnection(); if (maybesocket instanceof Socket) { Socket s = (Socket) maybesocket; timeoutMs = s.getSoTimeout(); } // Create the tunnel HttpTunnel tunnel = newHttpTunnel(request, response, addrPort.getInetAddress(), addrPort.getPort(), timeoutMs); if (tunnel != null) { // TODO - need to setup semi-busy loop for IE. if (_tunnelTimeoutMs > 0) { tunnel.getSocket().setSoTimeout(_tunnelTimeoutMs); if (maybesocket instanceof Socket) { Socket s = (Socket) maybesocket; s.setSoTimeout(_tunnelTimeoutMs); } } tunnel.setTimeoutMs(timeoutMs); customizeConnection(pathInContext, pathParams, request, tunnel.getSocket()); request.getHttpConnection().setHttpTunnel(tunnel); response.setStatus(HttpResponse.__200_OK); response.setContentLength(0); } request.setHandled(true); } } catch (Exception e) { LogSupport.ignore(log, e); response.sendError(HttpResponse.__500_Internal_Server_Error); } } /* ------------------------------------------------------------ */ protected HttpTunnel newHttpTunnel(HttpRequest request, HttpResponse response, InetAddress iaddr, int port, int timeoutMS) throws IOException { try { Socket socket = null; InputStream in = null; String chained_proxy_host = System.getProperty("http.proxyHost"); if (chained_proxy_host == null) { socket = new Socket(iaddr, port); socket.setSoTimeout(timeoutMS); socket.setTcpNoDelay(true); } else { int chained_proxy_port = Integer.getInteger("http.proxyPort", 8888).intValue(); Socket chain_socket = new Socket(chained_proxy_host, chained_proxy_port); chain_socket.setSoTimeout(timeoutMS); chain_socket.setTcpNoDelay(true); if (log.isDebugEnabled()) log.debug("chain proxy socket=" + chain_socket); LineInput line_in = new LineInput(chain_socket.getInputStream()); byte[] connect = request.toString().getBytes(org.mortbay.util.StringUtil.__ISO_8859_1); chain_socket.getOutputStream().write(connect); String chain_response_line = line_in.readLine(); HttpFields chain_response = new HttpFields(); chain_response.read(line_in); // decode response int space0 = chain_response_line.indexOf(' '); if (space0 > 0 && space0 + 1 < chain_response_line.length()) { int space1 = chain_response_line.indexOf(' ', space0 + 1); if (space1 > space0) { int code = Integer.parseInt(chain_response_line.substring(space0 + 1, space1)); if (code >= 200 && code < 300) { socket = chain_socket; in = line_in; } else { Enumeration iter = chain_response.getFieldNames(); while (iter.hasMoreElements()) { String name = (String) iter.nextElement(); if (!_DontProxyHeaders.containsKey(name)) { Enumeration values = chain_response.getValues(name); while (values.hasMoreElements()) { String value = (String) values.nextElement(); response.setField(name, value); } } } response.sendError(code); if (!chain_socket.isClosed()) chain_socket.close(); } } } } if (socket == null) return null; return new HttpTunnel(socket, in, null); } catch (IOException e) { log.debug(e); response.sendError(HttpResponse.__400_Bad_Request); return null; } } /* ------------------------------------------------------------ */ /** * Customize proxy Socket connection for CONNECT. Method to allow derived handlers to customize * the tunnel sockets. */ protected void customizeConnection(String pathInContext, String pathParams, HttpRequest request, Socket socket) { } /* ------------------------------------------------------------ */ /** * Customize proxy URL connection. Method to allow derived handlers to customize the connection. */ protected void customizeConnection(String pathInContext, String pathParams, HttpRequest request, URLConnection connection) { } /* ------------------------------------------------------------ */ /** * Is URL Proxied. Method to allow derived handlers to select which URIs are proxied and to * where. * * @param uri The requested URI, which should include a scheme, host and port. * @return The URL to proxy to, or null if the passed URI should not be proxied. The default * implementation returns the passed uri if isForbidden() returns true. */ protected URL isProxied(URI uri) throws MalformedURLException { // Is this a proxy request? if (isForbidden(uri)) return null; // OK return URI as untransformed URL. return new URL(uri.toString()); } /* ------------------------------------------------------------ */ /** * Is URL Forbidden. * * @return True if the URL is not forbidden. Calls isForbidden(scheme,host,port,true); */ protected boolean isForbidden(URI uri) { String scheme = uri.getScheme(); String host = uri.getHost(); int port = uri.getPort(); return isForbidden(scheme, host, port, true); } /* ------------------------------------------------------------ */ /** * Is scheme,host & port Forbidden. * * @param scheme A scheme that mast be in the proxySchemes StringMap. * @param host A host that must pass the white and black lists * @param port A port that must in the allowedConnectPorts Set * @param openNonPrivPorts If true ports greater than 1024 are allowed. * @return True if the request to the scheme,host and port is not forbidden. */ protected boolean isForbidden(String scheme, String host, int port, boolean openNonPrivPorts) { // Check port if (port > 0 && !_allowedConnectPorts.contains(new Integer(port))) { if (!openNonPrivPorts || port <= 1024) return true; } // Must be a scheme that can be proxied. if (scheme == null || !_ProxySchemes.containsKey(scheme)) return true; // Must be in any defined white list if (_proxyHostsWhiteList != null && !_proxyHostsWhiteList.contains(host)) return true; // Must not be in any defined black list return _proxyHostsBlackList != null && _proxyHostsBlackList.contains(host); } /* ------------------------------------------------------------ */ /** * Send Forbidden. Method called to send forbidden response. Default implementation calls * sendError(403) */ protected void sendForbid(HttpRequest request, HttpResponse response, URI uri) throws IOException { response.sendError(HttpResponse.__403_Forbidden, "Forbidden for Proxy"); } /* ------------------------------------------------------------ */ /** * @return Returns the anonymous. */ public boolean isAnonymous() { return _anonymous; } /* ------------------------------------------------------------ */ /** * @param anonymous The anonymous to set. */ public void setAnonymous(boolean anonymous) { _anonymous = anonymous; } }
HttpAuthenticationUtils.java
package org.openqa.selenium.server; import java.net.URI; import java.net.URL; import java.net.MalformedURLException; import java.util.Hashtable; import java.util.Map; import org.apache.commons.httpclient.Credentials; import org.apache.commons.httpclient.HttpMethod; import org.apache.commons.httpclient.NTCredentials; import org.apache.commons.httpclient.UsernamePasswordCredentials; import org.apache.commons.httpclient.auth.AuthChallengeException; import org.apache.commons.httpclient.auth.AuthenticationException; import org.apache.commons.httpclient.auth.AuthScheme; import org.apache.commons.httpclient.auth.BasicScheme; import org.apache.commons.httpclient.auth.CredentialsNotAvailableException; import org.apache.commons.httpclient.auth.DigestScheme; import org.apache.commons.httpclient.auth.MalformedChallengeException; import org.apache.commons.httpclient.auth.NTLMScheme; import org.apache.commons.httpclient.methods.GetMethod; /* * @(#)HttpAuthenticationUtils */ public class HttpAuthenticationUtils { public static final String AUTH_URI = "proxyhandler.http.auth"; public static final String BASIC = "Basic"; public static final String DIGEST = "Digest"; public static final String NTLM = "NTLM"; public static final String NTLM_REDIRECT = "NTLMREDIRECT"; private static Hashtable authSchemes = new Hashtable(); public static String getHttpAuthForm(String challenge, String uri) throws AuthenticationException, MalformedChallengeException { String form = null; AuthScheme authScheme = selectAuthScheme(challenge); authScheme.processChallenge(challenge); boolean saveScheme = true; try { if (authScheme instanceof BasicScheme) { form = getUnmPwdAuthForm(BASIC, challenge, new URL(uri)); } else if (authScheme instanceof DigestScheme) { form = getUnmPwdAuthForm(DIGEST, challenge, new URL(uri)); } else if (authScheme instanceof NTLMScheme) { form = (getAuthSchemeForURI(URI.create(uri)) == null) ? getNTLMAuthForm(challenge, new URL(uri)) : getNTLMAuthRedirect(new URL(uri)); } else { form = getUnknownAuthPage(challenge,new URL(uri)); saveScheme = false; } } catch (MalformedURLException e) { throw new AuthenticationException(e.getMessage(), e); } if(saveScheme) { setAuthSchemeForURI(authScheme, URI.create(uri)); } return form; } private static String getUnmPwdAuthForm(String type, String challenge, URL url) { String form = "<html><body>" + "<h1>" + type + " Authorization Required</h1>" + "<form>" + "<input type=\"hidden\" name=\"authUri\" value=\"" + AUTH_URI + "\" />" + "<input type=\"hidden\" name=\"origUrl\" value=\"" + url + "\" />" + "<input type=\"hidden\" name=\"authType\" value=\"" + type + "\" />" + "<input type=\"hidden\" name=\"challenge\" value=\"" + challenge.replace('"', '\'') + "\" />" + "Username: <input type=\"text\" name=\"userName\" /><br />" + "Password: <input type=\"text\" name=\"password\" /><br />" + "<input type=\"submit\" name=\"submit\"/>" + "</form>" + "</body></html>"; return form; } private static String getNTLMAuthForm(String challenge, URL url) { String form = "<html><body><h1>" + NTLM + " Authorization Required</h1>" + "<form>" + "<input type=\"hidden\" name=\"authUri\" value=\"" + AUTH_URI + "\" />" + "<input type=\"hidden\" name=\"origUrl\" value=\"" + url + "\" />" + "<input type=\"hidden\" name=\"authType\" value=\"" + NTLM + "\" />" + "<input type=\"hidden\" name=\"challenge\" value=\"" + challenge.replace('"', '\'') + "\" />" + "Username: <input type=\"text\" name=\"userName\" /><br />" + "Password: <input type=\"text\" name=\"password\" /><br />" + "Host: <input type=\"text\" name=\"host\" /><br />" + "Domain: <input type=\"text\" name=\"domain\" /><br />" + "<input type=\"submit\" name=\"submit\"/>" + "</form>" + "</body></html>"; return form; } private static String getNTLMAuthRedirect(URL url) { String form = "<html><head><meta http-equiv=\"refresh\" content=\"0;URL=" + url + "?authUri=" + AUTH_URI + "&origUrl=" + url + "&authType=" + NTLM_REDIRECT + "\"></head><body>" + "<h1>" + NTLM + " Authorization In Progress</h1>" + "<a href=\"" + url + "?authUri=" + AUTH_URI + "&origUrl=" + url + "&authType=" + NTLM_REDIRECT + "\">" + "Continue Authentication</a>" + "</body></html>"; return form; } private static String getUnknownAuthPage(String challenge, URL url) { String form = "<html><body>" + "<h1>Unknown Authentication / 401 Error</h1>" + "<b>URL Requested: " + url + "<br/>" + "<b>Challenge: </b>" + challenge + "<br/>" + "</body></html>"; return form; } public static String doAuthenticate(Map credMap, String uri) throws AuthenticationException { AuthScheme authScheme = getAuthSchemeForURI(URI.create(uri)); Credentials creds = getCredentialsForAuthScheme(credMap, authScheme); return doAuthenticate(creds, authScheme, uri); } public static String doAuthenticate(Credentials creds, String uri) throws AuthenticationException { AuthScheme authScheme = getAuthSchemeForURI(URI.create(uri)); return doAuthenticate(creds, authScheme, uri); } public static String doAuthenticate(Credentials creds, AuthScheme authScheme, String uri) throws AuthenticationException { HttpMethod httpMethod = new GetMethod(uri); return authScheme.authenticate(creds, httpMethod); } public static Credentials getCredentialsForAuthScheme(Map credMap, AuthScheme authScheme) throws CredentialsNotAvailableException { Credentials creds = null; if (authScheme instanceof BasicScheme || authScheme instanceof DigestScheme) { creds = new UsernamePasswordCredentials((String) credMap .get("userName"), (String) credMap.get("password")); } else if (authScheme instanceof NTLMScheme) { creds = new NTCredentials((String) credMap.get("userName"), (String) credMap.get("password"), (String) credMap .get("host"), (String) credMap.get("domain")); } else { throw new CredentialsNotAvailableException( "Unknown Authentication Scheme"); } return creds; } public static AuthScheme selectAuthScheme(String challenge) throws AuthChallengeException { if (challenge == null) { throw new IllegalArgumentException("Challenge may not be null"); } Map authPrefs = new Hashtable(); authPrefs.put("Basic", BasicScheme.class); authPrefs.put("Digest", DigestScheme.class); authPrefs.put("NTLM", NTLMScheme.class); AuthScheme authscheme = null; try { String[] challengeParts = challenge.split(" "); Class clazz = null; if ((clazz = (Class) authPrefs.get(challengeParts[0])) != null) { authscheme = (AuthScheme) clazz.newInstance(); } } catch (Exception e) { throw new AuthChallengeException(e.getMessage(), e); } if (authscheme == null) { throw new AuthChallengeException("Unable to respond to challenge: " + challenge); } return authscheme; } public static AuthScheme getAuthSchemeForURI(URI uri) { AuthScheme authScheme = null; String uriPath = getURIPath(uri); if (authSchemes.containsKey(uriPath)) { authScheme = (AuthScheme) authSchemes.get(uriPath); } return authScheme; } public static boolean setAuthSchemeForURI(AuthScheme authScheme, URI uri) { boolean success = false; String uriPath = getURIPath(uri); if (!authSchemes.containsKey(uriPath)) { authSchemes.put(uriPath, authScheme); success = true; } return success; } public static String getURIPath(URI uri) { StringBuffer uriWOQSSB = new StringBuffer(); uriWOQSSB.append(uri.getScheme()).append("://").append(uri.getHost()); if (uri.getPort() > -1) { uriWOQSSB.append(":").append(uri.getPort()); } if (uri.getPath() == null) { uriWOQSSB.append("/"); } else { String ePath = uri.getPath(); ePath = ePath.substring(0, ePath.lastIndexOf("/") + 1); uriWOQSSB.append(ePath); } return uriWOQSSB.toString(); } }
Comments (1)
Jul 20, 2007
Mikhail says:
How does this work? How must I use this??How does this work?
How must I use this??