Return-Path: Delivered-To: apmail-jakarta-httpclient-user-archive@www.apache.org Received: (qmail 19951 invoked from network); 24 Mar 2005 07:42:33 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 24 Mar 2005 07:42:33 -0000 Received: (qmail 45992 invoked by uid 500); 24 Mar 2005 07:42:33 -0000 Delivered-To: apmail-jakarta-httpclient-user-archive@jakarta.apache.org Received: (qmail 45969 invoked by uid 500); 24 Mar 2005 07:42:33 -0000 Mailing-List: contact httpclient-user-help@jakarta.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: "HttpClient User Discussion" Reply-To: "HttpClient User Discussion" Delivered-To: mailing list httpclient-user@jakarta.apache.org Received: (qmail 45956 invoked by uid 99); 24 Mar 2005 07:42:33 -0000 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received-SPF: pass (hermes.apache.org: local policy) Received: from sphere.isbank.com.tr (HELO istsgbimnavgtw1.isbank.com.tr) (213.161.144.65) by apache.org (qpsmtpd/0.28) with SMTP; Wed, 23 Mar 2005 23:42:31 -0800 Received: from istsgbimfeex002.gm.isbank.com.tr ([10.50.104.242]) by istsgbimnavgtw1.isbank.com.tr (SMSSMTP 4.0.0.59) with SMTP id M2005032409482117042 for ; Thu, 24 Mar 2005 09:48:21 +0200 Received: from istsgbimex2k006.gm.isbank.com.tr ([10.50.104.231]) by istsgbimfeex002.gm.isbank.com.tr with Microsoft SMTPSVC(6.0.3790.211); Thu, 24 Mar 2005 09:42:23 +0200 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.181 Importance: normal Priority: normal content-class: urn:content-classes:message MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Subject: RE: NTLM authorization header Date: Thu, 24 Mar 2005 09:42:24 +0200 Message-ID: X-MS-Has-Attach: X-MS-TNEF-Correlator: Thread-Topic: NTLM authorization header Thread-Index: AcUwQ8hStqwZJoIDS9q6Lz7Zs1sepwAAQCsw From: =?iso-8859-1?Q?Osman_=C7inar_Eren?= To: "HttpClient User Discussion" X-OriginalArrivalTime: 24 Mar 2005 07:42:23.0671 (UTC) FILETIME=[04863C70:01C53045] X-Virus-Checked: Checked X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N I have the same problem with a web server which asks for basic = authentication and form based authentication. for the first one i should pass the username-password(base64 encoded), = for the second one i need to pass the sessionid. any help will be greatly appreciated. thanks in advance. regards. -----Original Message----- From: Zhu Li Qiang [mailto:ZhuLiQiang@bcsis.com] Sent: Thursday, March 24, 2005 9:39 AM To: httpclient-user@jakarta.apache.org Subject: NTLM authorization header Hello,=20 I am new to HttpClient, and trying to use HttpClient in a servlet to = implement a single-sign-on requirement. When an user's browser hits the servlet, the servlet will use HttpClient = to: 1) logon on to another web application via NTLM authentication 2) request the first content page of that application=20 3) put the response from that application into the servlet's response = outputstream, which will redirect the browser to that application = directly onwards. I have a problem here. Since the httpclient has been authenticated by = that application, how can the servlet passes the "authorization headers" = and "response headers" down to the browser so the application will not = authenticate the browser user again. Hope somebody can enlighten me on this. Many thanks in advance. Richard --------------------------------------------------------------------- To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org For additional commands, e-mail: httpclient-user-help@jakarta.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org For additional commands, e-mail: httpclient-user-help@jakarta.apache.org