Return-Path: 
 <c-dev-return-22581-apmail-axis-c-dev-archive=axis.apache.org@axis.apache.org>
X-Original-To: apmail-axis-c-dev-archive@www.apache.org
Delivered-To: apmail-axis-c-dev-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 42CE5D798
	for <apmail-axis-c-dev-archive@www.apache.org>;
 Fri, 21 Dec 2012 18:05:13 +0000 (UTC)
Received: (qmail 35001 invoked by uid 500); 21 Dec 2012 18:05:13 -0000
Delivered-To: apmail-axis-c-dev-archive@axis.apache.org
Received: (qmail 34972 invoked by uid 500); 21 Dec 2012 18:05:13 -0000
Mailing-List: contact c-dev-help@axis.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:c-dev-help@axis.apache.org>
List-Unsubscribe: <mailto:c-dev-unsubscribe@axis.apache.org>
List-Post: <mailto:c-dev@axis.apache.org>
List-Id: <c-dev.axis.apache.org>
Reply-To: "Apache AXIS C Developers List" <c-dev@axis.apache.org>
Delivered-To: mailing list c-dev@axis.apache.org
Received: (qmail 34741 invoked by uid 99); 21 Dec 2012 18:05:12 -0000
Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28)
    by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 21 Dec 2012 18:05:12 +0000
Date: Fri, 21 Dec 2012 18:05:12 +0000 (UTC)
From: "Alex Mantaut (JIRA)" <jira@apache.org>
To: c-dev@axis.apache.org
Message-ID: <JIRA.12426742.1243704911278.43776.1356113112657@arcas>
In-Reply-To: <JIRA.12426742.1243704911278@arcas>
References: <JIRA.12426742.1243704911278@arcas>
Subject: [jira] [Issue Comment Deleted] (AXIS2C-1370) Axis should support
 libcurl's other auth types (not just basic)
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394


     [ https://issues.apache.org/jira/browse/AXIS2C-1370?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Alex Mantaut updated AXIS2C-1370:
---------------------------------

    Comment: was deleted

(was: New version of the patch... Removed line 

AXIS2_FREE(data->env->allocator, content_type); 

because libcurl returns a weak link to it... so it must not be released from here 

for more information see http://curl.haxx.se/libcurl/c/curl_easy_getinfo.html

Thanks a lot Dinesh for the catch!
)
    
> Axis should support libcurl's other auth types (not just basic)
> ---------------------------------------------------------------
>
>                 Key: AXIS2C-1370
>                 URL: https://issues.apache.org/jira/browse/AXIS2C-1370
>             Project: Axis2-C
>          Issue Type: Improvement
>          Components: transport/http
>    Affects Versions: 1.6.0
>            Reporter: Incarnadine
>            Assignee: Dinesh Weerapurage
>             Fix For: Next Version
>
>         Attachments: axis2c-1370.diff, axis2c_libcurl_auth.patch, axis2c_libcurl_auth_v2.patch, axis2_libcurl.c.diff, options.c.diff
>
>   Original Estimate: 2h
>  Remaining Estimate: 2h
>
> Looking over axis2_libcurl_set_auth_options() I see it only allows basic auth.
> if (auth_type && 
>         0 == axutil_strcmp(auth_type, AXIS2_HTTP_AUTH_TYPE_BASIC))
>     {
>         curl_easy_setopt(handler, CURLOPT_HTTPAUTH, CURLAUTH_BASIC);
>     }
> else
>     {
>         /* Uses anonymous connection.*/
>     }
> If new schemes can be enabled as easily as mapping Axis options to Libcurl, this would appear to be an easy fix. Other supported values to be mapped include:
> CURLAUTH_BASIC 
> HTTP Basic authentication. This is the default choice, and the only method that is in wide-spread use and supported virtually everywhere. This is sending the user name and password over the network in plain text, easily captured by others. 
> CURLAUTH_DIGEST 
> HTTP Digest authentication. Digest authentication is defined in RFC2617 and is a more secure way to do authentication over public networks than the regular old-fashioned Basic method. 
> CURLAUTH_GSSNEGOTIATE 
> HTTP GSS-Negotiate authentication. The GSS-Negotiate (also known as plain "Negotiate") method was designed by Microsoft and is used in their web applications. It is primarily meant as a support for Kerberos5 authentication but may be also used along with another authentication methods. For more information see IETF draft draft-brezak-spnego-http-04.txt. 
> You need to build libcurl with a suitable GSS-API library for this to work. 
> CURLAUTH_NTLM 
> HTTP NTLM authentication. A proprietary protocol invented and used by Microsoft. It uses a challenge-response and hash concept similar to Digest, to prevent the password from being eavesdropped. 
> You need to build libcurl with OpenSSL support for this option to work, or build libcurl on Windows. 
> CURLAUTH_ANY 
> This is a convenience macro that sets all bits and thus makes libcurl pick any it finds suitable. libcurl will automatically select the one it finds most secure. 
> CURLAUTH_ANYSAFE 
> This is a convenience macro that sets all bits except Basic and thus makes libcurl pick any it finds suitable. libcurl will automatically select the one it finds most secure. 

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

---------------------------------------------------------------------
To unsubscribe, e-mail: c-dev-unsubscribe@axis.apache.org
For additional commands, e-mail: c-dev-help@axis.apache.org