hc-httpclient-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Osman Çinar Eren <Cinar.E...@isbank.com.tr>
Subject RE: NTLM authorization header
Date Thu, 24 Mar 2005 07:42:24 GMT
I have the same problem with a web server which asks for basic authentication and form based
authentication.
for the first one i should pass the username-password(base64 encoded), for the second one
i need to pass the sessionid.

any help will be greatly appreciated.
thanks in advance.
regards.

-----Original Message-----
From: Zhu Li Qiang [mailto:ZhuLiQiang@bcsis.com]
Sent: Thursday, March 24, 2005 9:39 AM
To: httpclient-user@jakarta.apache.org
Subject: NTLM authorization header


Hello, 

I am new to HttpClient, and trying to use HttpClient in a servlet to implement a single-sign-on
requirement.

When an user's browser hits the servlet, the servlet will use HttpClient to:

1) logon on to another web application via NTLM authentication

2) request the first content page of that application 

3) put the response from that application into the servlet's response outputstream, which
will redirect the browser to that application directly onwards.

I have a problem here. Since the httpclient has been authenticated by that application, how
can the servlet passes the "authorization headers" and "response headers" down to the browser
so the application will not authenticate the browser user again.

Hope somebody can enlighten me on this.

Many thanks in advance.

Richard

---------------------------------------------------------------------
To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: httpclient-user-help@jakarta.apache.org


---------------------------------------------------------------------
To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: httpclient-user-help@jakarta.apache.org


Mime
View raw message