Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id 193A7200C1D for ; Thu, 16 Feb 2017 11:55:42 +0100 (CET) Received: by cust-asf.ponee.io (Postfix) id 17D2F160B61; Thu, 16 Feb 2017 10:55:42 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id 64C41160B57 for ; Thu, 16 Feb 2017 11:55:41 +0100 (CET) Received: (qmail 67976 invoked by uid 500); 16 Feb 2017 10:55:40 -0000 Mailing-List: contact dev-help@hc.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "HttpComponents Project" Delivered-To: mailing list dev@hc.apache.org Received: (qmail 67963 invoked by uid 99); 16 Feb 2017 10:55:39 -0000 Received: from pnap-us-west-generic-nat.apache.org (HELO spamd2-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 16 Feb 2017 10:55:39 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd2-us-west.apache.org (ASF Mail Server at spamd2-us-west.apache.org) with ESMTP id C1A291A07AB for ; Thu, 16 Feb 2017 10:55:38 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd2-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: -3.099 X-Spam-Level: X-Spam-Status: No, score=-3.099 tagged_above=-999 required=6.31 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RP_MATCHES_RCVD=-2.999, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=disabled Authentication-Results: spamd2-us-west.apache.org (amavisd-new); dkim=pass (1024-bit key) header.d=evolveum.com Received: from mx1-lw-us.apache.org ([10.40.0.8]) by localhost (spamd2-us-west.apache.org [10.40.0.9]) (amavisd-new, port 10024) with ESMTP id quSxaTHnr9o7 for ; Thu, 16 Feb 2017 10:55:36 +0000 (UTC) Received: from hermes.evolveum.com (hermes.evolveum.com [141.101.128.38]) by mx1-lw-us.apache.org (ASF Mail Server at mx1-lw-us.apache.org) with ESMTP id 1806B5F238 for ; Thu, 16 Feb 2017 10:55:35 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by hermes.evolveum.com (Postfix) with ESMTP id AB2EC360FEE for ; Thu, 16 Feb 2017 11:56:13 +0100 (CET) Received: from hermes.evolveum.com ([127.0.0.1]) by localhost (hermes.evolveum.com [127.0.0.1]) (amavisd-new, port 10032) with ESMTP id MELgbMDlYmtJ for ; Thu, 16 Feb 2017 11:56:09 +0100 (CET) Received: from localhost (localhost [127.0.0.1]) by hermes.evolveum.com (Postfix) with ESMTP id A6682361616 for ; Thu, 16 Feb 2017 11:56:09 +0100 (CET) DKIM-Filter: OpenDKIM Filter v2.9.0 hermes.evolveum.com A6682361616 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=evolveum.com; s=46F1F96C-8266-11E5-BB5D-6C9186186C84; t=1487242569; bh=B/JL/WayKdZnb0E7TDT6EzB/GdHPOJvX3fn8XoNc6VE=; h=To:From:Subject:Message-ID:Date:MIME-Version:Content-Type: Content-Transfer-Encoding; b=SACtbMRQDV8Vdb85ZADjlXKZF1ZsiF1ZaMWg7SBiLi0E32JgPXajjVaZ7JGrLiu5s ehq/Uzd5BhnpWgtcxjpLwblzOFQKcQr/XYxj5XuywcR+sXcrQjwjSISr87/GPJKtH4 LooCkTAI90d+zWmPgAb2kXHCpoV13fQdn7gExtl8= X-Virus-Scanned: amavisd-new at hermes.evolveum.com Received: from hermes.evolveum.com ([127.0.0.1]) by localhost (hermes.evolveum.com [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id xnB5ZWtJNEhx for ; Thu, 16 Feb 2017 11:56:09 +0100 (CET) Received: from [10.1.1.50] (static-dsl-137.87-197-146.telecom.sk [87.197.146.137]) by hermes.evolveum.com (Postfix) with ESMTPSA id 8CB26360FEE for ; Thu, 16 Feb 2017 11:56:09 +0100 (CET) To: dev@hc.apache.org From: Radovan Semancik Subject: CredSSP support for HTTP client: testing Message-ID: <11a884a7-e200-51ea-de36-efdc8ae43433@evolveum.com> Date: Thu, 16 Feb 2017 11:55:24 +0100 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.7.0 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit archived-at: Thu, 16 Feb 2017 10:55:42 -0000 Hi, I have developed CredSSP support for the HTTP client. While doing so I have also significantly improved NTLM implementation in the HTTP client. It is not better aligned with Microsoft specifications and it supports more protocol options. I had to do it because CredSSP requires NTLM support for GSS API wrapping/unwrapping. So I have implemented it. The description, motivation and limitations are in the source code javadoc. The source code is here: https://github.com/Evolveum/httpclient/tree/credssp Currently we are in the process of testing this implementation. I have already tested few basic usecases and it seems to work. But more testing is needed. And that's also the reason for writing this mail. I would like to invite anyone who is interested in testing CredSSP and NTLM implementations to participate in the testing. I hope that I will be ready to issue a pull request in a couple of weeks. -- Radovan Semancik Software Architect evolveum.com --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscribe@hc.apache.org For additional commands, e-mail: dev-help@hc.apache.org