hc-httpclient-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Ole-Henrik Wettre" <Ole-Henrik.Wet...@elcon.no>
Subject SV: SV: SV: SV: Problem with digest authentication
Date Fri, 26 Aug 2005 08:41:02 GMT
Yes I have. IIS responds with 401 if nonce-count (nc) is enclosed in quote marks as in 3.0rc3, and 200 ok if nc isn't enclosed in quote marks as in 3.0rc1.

In my opinion nonce-count should not be quoted according to rfc2617:
3.2.2 The Authorization Request Header

   The client is expected to retry the request, passing an Authorization
   header line, which is defined according to the framework above,
   utilized as follows.

       credentials      = "Digest" digest-response
       digest-response  = 1#( username | realm | nonce | digest-uri
                       | response | [ algorithm ] | [cnonce] |
                       [opaque] | [message-qop] |
                           [nonce-count]  | [auth-param] )

       username         = "username" "=" username-value
       username-value   = quoted-string
       digest-uri       = "uri" "=" digest-uri-value
       digest-uri-value = request-uri   ; As specified by HTTP/1.1
       message-qop      = "qop" "=" qop-value
       cnonce           = "cnonce" "=" cnonce-value
       cnonce-value     = nonce-value
       nonce-count      = "nc" "=" nc-value
       nc-value         = 8LHEX
       response         = "response" "=" request-digest
       request-digest = <"> 32LHEX <">
       LHEX             =  "0" | "1" | "2" | "3" |
                           "4" | "5" | "6" | "7" |
                           "8" | "9" | "a" | "b" |
                           "c" | "d" | "e" | "f"
Cheers,
Ole

-----Opprinnelig melding-----
Fra: Oleg Kalnichevski [mailto:olegk@apache.org]
Sendt: 25. august 2005 11:24
Til: httpclient-user@jakarta.apache.org
Kopi: Ole-Henrik Wettre
Emne: Re: SV: SV: SV: Problem with digest authentication


Ole-Henrik,

Did you have any luck narrowing down the problem? We need this info in
order to decide whether we should release another RC or go straight to
3.0 final

Cheers,

Oleg



On Wed, Aug 24, 2005 at 10:36:41AM +0200, Oleg Kalnichevski wrote:
> Ole-Henrik,
> 
> Given the same set of credentials, HTTP request and cnonce value both
> rc1 and rc3 versions produce virtually identical response to the same
> digest challenge:
> 
> challenge:
> 
> Digest qop="auth",
>   algorithm=MD5-sess,
>   nonce="e4c9988376a8c50109abadc5dc3b39c4d787a65a6d06771b1e39acb77e9ffedd3413ef7afd659def",
>   charset=utf-8,
>   realm="stonabs01.local"
> 
> rc3 response:
> 
> Digest username="fasade", 
>   realm="stonabs01.local", 
>   nonce="e4c9988376a8c50109abadc5dc3b39c4d787a65a6d06771b1e39acb77e9ffedd3413ef7afd659def", 
>   uri="/fasadeTest/fasade.aspx", 
>   response="355d446b24e9d8287303e6bd74c8d299", 
>   qop="auth", 
>   nc="00000001", 
>   cnonce="cfcd208495d565ef66e7dff9f98764da", 
>   algorithm="MD5-sess"
>   
> rc1 response:
> 
> Digest username="fasade", 
>   realm="stonabs01.local", 
>   nonce="e4c9988376a8c50109abadc5dc3b39c4d787a65a6d06771b1e39acb77e9ffedd3413ef7afd659def", 
>   uri="/fasadeTest/fasade.aspx", 
>   response="355d446b24e9d8287303e6bd74c8d299", 
>   qop="auth", 
>   nc=00000001, 
>   cnonce="cfcd208495d565ef66e7dff9f98764da", 
>   algorithm="MD5-sess"
> 
> The only difference is the nc value that rc3 encloses in quote marks,
> which should not matter according to the spec. Feel free to experiment
> by replacing the version of DigestScheme shipped with rc3 with that of
> rc1 and see if that makes any difference. If you can narrow the problem
> down to the way rc3 formats response attribute values the problem can
> easily mended. Otherwise you are at the mercy of Microsoft support
> 
> Oleg
> 
> 
> 
> On Wed, Aug 24, 2005 at 08:43:17AM +0200, Ole-Henrik Wettre wrote:
> > Oleg, I hope this will convince you. I modified my test program a bit so the server application won't fail.
> > 
> > Below are the wire traces. With rc3 I get a 401 response. Then with rc1, works OK with 200 response.
> > 
> > rc3:
> > 2005/08/24 08:42:06:814 CEST [DEBUG] HttpClient - -Java version: 1.4.2_05
> > 2005/08/24 08:42:06:830 CEST [DEBUG] HttpClient - -Java vendor: Sun Microsystems Inc.
> > 2005/08/24 08:42:06:830 CEST [DEBUG] HttpClient - -Java class path: C:\commons-codec-1.2\commons-codec-1.2.jar;C:\workspace\Front-2.5.0-b2.4.1\lib\commons-logging.jar;C:\commons-httpclient-3.0-rc3\commons-httpclient-3.0-rc3.jar;C:\workspace\Front-2.5.0-b2.4.1\classes
> > 2005/08/24 08:42:06:861 CEST [DEBUG] HttpClient - -Operating system name: Windows 2000
> > 2005/08/24 08:42:06:861 CEST [DEBUG] HttpClient - -Operating system architecture: x86
> > 2005/08/24 08:42:06:876 CEST [DEBUG] HttpClient - -Operating system version: 5.0
> > 2005/08/24 08:42:07:001 CEST [DEBUG] HttpClient - -SUN 1.42: SUN (DSA key/parameter generation; DSA signing; SHA-1, MD5 digests; SecureRandom; X.509 certificates; JKS keystore; PKIX CertPathValidator; PKIX CertPathBuilder; LDAP, Collection CertStores)
> > 2005/08/24 08:42:07:001 CEST [DEBUG] HttpClient - -SunJSSE 1.42: Sun JSSE provider(implements RSA Signatures, PKCS12, SunX509 key/trust factories, SSLv3, TLSv1)
> > 2005/08/24 08:42:07:001 CEST [DEBUG] HttpClient - -SunRsaSign 1.42: SUN's provider for RSA signatures
> > 2005/08/24 08:42:07:001 CEST [DEBUG] HttpClient - -SunJCE 1.42: SunJCE Provider (implements DES, Triple DES, AES, Blowfish, PBE, Diffie-Hellman, HMAC-MD5, HMAC-SHA1)
> > 2005/08/24 08:42:07:001 CEST [DEBUG] HttpClient - -SunJGSS 1.0: Sun (Kerberos v5)
> > 2005/08/24 08:42:07:017 CEST [DEBUG] DefaultHttpParams - -Set parameter http.useragent = Jakarta Commons-HttpClient/3.0-rc3
> > 2005/08/24 08:42:07:017 CEST [DEBUG] DefaultHttpParams - -Set parameter http.protocol.version = HTTP/1.1
> > 2005/08/24 08:42:07:017 CEST [DEBUG] DefaultHttpParams - -Set parameter http.connection-manager.class = class org.apache.commons.httpclient.SimpleHttpConnectionManager
> > 2005/08/24 08:42:07:017 CEST [DEBUG] DefaultHttpParams - -Set parameter http.protocol.cookie-policy = rfc2109
> > 2005/08/24 08:42:07:017 CEST [DEBUG] DefaultHttpParams - -Set parameter http.protocol.element-charset = US-ASCII
> > 2005/08/24 08:42:07:017 CEST [DEBUG] DefaultHttpParams - -Set parameter http.protocol.content-charset = ISO-8859-1
> > 2005/08/24 08:42:07:033 CEST [DEBUG] DefaultHttpParams - -Set parameter http.method.retry-handler = org.apache.commons.httpclient.DefaultHttpMethodRetryHandler@197a37c
> > 2005/08/24 08:42:07:033 CEST [DEBUG] DefaultHttpParams - -Set parameter http.dateparser.patterns = [EEE, dd MMM yyyy HH:mm:ss zzz, EEEE, dd-MMM-yy HH:mm:ss zzz, EEE MMM d HH:mm:ss yyyy, EEE, dd-MMM-yyyy HH:mm:ss z, EEE, dd-MMM-yyyy HH-mm-ss z, EEE, dd MMM yy HH:mm:ss z, EEE dd-MMM-yyyy HH:mm:ss z, EEE dd MMM yyyy HH:mm:ss z, EEE dd-MMM-yyyy HH-mm-ss z, EEE dd-MMM-yy HH:mm:ss z, EEE dd MMM yy HH:mm:ss z, EEE,dd-MMM-yy HH:mm:ss z, EEE,dd-MMM-yyyy HH:mm:ss z, EEE, dd-MM-yyyy HH:mm:ss z]
> > 2005/08/24 08:42:07:033 CEST [DEBUG] DefaultHttpParams - -Set parameter http.connection.timeout = 180000
> > 2005/08/24 08:42:07:033 CEST [DEBUG] DefaultHttpParams - -Set parameter http.auth.scheme-priority = [Digest]
> > 2005/08/24 08:42:07:048 CEST [DEBUG] DefaultHttpParams - -Set parameter http.socket.timeout = 180000
> > 2005/08/24 08:42:07:111 CEST [DEBUG] HttpConnection - -Open connection to 85.19.64.181:80
> > 2005/08/24 08:42:07:236 CEST [DEBUG] header - ->> "POST /fasadeTest/fasade.aspx HTTP/1.1[\r][\n]"
> > 2005/08/24 08:42:07:236 CEST [DEBUG] HttpMethodBase - -Adding Host request header
> > 2005/08/24 08:42:07:267 CEST [DEBUG] header - ->> "Content-type: text/xml; charset=UTF-8[\r][\n]"
> > 2005/08/24 08:42:07:267 CEST [DEBUG] header - ->> "tjenestenavn: ProduserDokumenter[\r][\n]"
> > 2005/08/24 08:42:07:267 CEST [DEBUG] header - ->> "User-Agent: Jakarta Commons-HttpClient/3.0-rc3[\r][\n]"
> > 2005/08/24 08:42:07:267 CEST [DEBUG] header - ->> "Host: 85.19.64.181[\r][\n]"
> > 2005/08/24 08:42:07:267 CEST [DEBUG] header - ->> "Content-Length: 4[\r][\n]"
> > 2005/08/24 08:42:07:267 CEST [DEBUG] header - ->> "[\r][\n]"
> > 2005/08/24 08:42:07:267 CEST [DEBUG] EntityEnclosingMethod - -Request body sent
> > 2005/08/24 08:42:07:376 CEST [DEBUG] header - -<< "HTTP/1.1 401 Unauthorized[\r][\n]"
> > 2005/08/24 08:42:07:376 CEST [DEBUG] header - -<< "Content-Length: 1656[\r][\n]"
> > 2005/08/24 08:42:07:376 CEST [DEBUG] header - -<< "Content-Type: text/html[\r][\n]"
> > 2005/08/24 08:42:07:376 CEST [DEBUG] header - -<< "Server: Microsoft-IIS/6.0[\r][\n]"
> > 2005/08/24 08:42:07:376 CEST [DEBUG] header - -<< "WWW-Authenticate: Digest qop="auth",algorithm=MD5-sess,nonce="0e2d3dbd76a8c5011e374c54d57ab84d8ddf9fd314e5787353228f25a982823af5b72b7e43135956",charset=utf-8,realm="stonabs01.local"[\r][\n]"
> > 2005/08/24 08:42:07:376 CEST [DEBUG] header - -<< "X-Powered-By: ASP.NET[\r][\n]"
> > 2005/08/24 08:42:07:376 CEST [DEBUG] header - -<< "Date: Wed, 24 Aug 2005 06:40:38 GMT[\r][\n]"
> > 2005/08/24 08:42:07:392 CEST [DEBUG] HttpMethodDirector - -Authorization required
> > 2005/08/24 08:42:07:392 CEST [DEBUG] AuthChallengeProcessor - -Supported authentication schemes in the order of preference: [Digest]
> > 2005/08/24 08:42:07:392 CEST [INFO] AuthChallengeProcessor - -Digest authentication scheme selected
> > 2005/08/24 08:42:07:392 CEST [DEBUG] AuthChallengeProcessor - -Using authentication scheme: digest
> > 2005/08/24 08:42:07:392 CEST [DEBUG] AuthChallengeProcessor - -Authorization challenge processed
> > 2005/08/24 08:42:07:392 CEST [DEBUG] HttpMethodDirector - -Authentication scope: DIGEST 'stonabs01.local'@85.19.64.181:80
> > 2005/08/24 08:42:07:392 CEST [DEBUG] HttpMethodDirector - -Retry authentication
> > 2005/08/24 08:42:07:408 CEST [DEBUG] HttpMethodBase - -Resorting to protocol version default close connection policy
> > 2005/08/24 08:42:07:408 CEST [DEBUG] HttpMethodBase - -Should NOT close connection, using HTTP/1.1
> > 2005/08/24 08:42:07:408 CEST [DEBUG] HttpConnection - -Connection is locked.  Call to releaseConnection() ignored.
> > 2005/08/24 08:42:07:408 CEST [DEBUG] HttpMethodDirector - -Authenticating with DIGEST 'stonabs01.local'@85.19.64.181:80
> > 2005/08/24 08:42:07:408 CEST [DEBUG] DigestScheme - -Using qop method auth
> > 2005/08/24 08:42:07:423 CEST [DEBUG] header - ->> "POST /fasadeTest/fasade.aspx HTTP/1.1[\r][\n]"
> > 2005/08/24 08:42:07:423 CEST [DEBUG] HttpMethodBase - -Adding Host request header
> > 2005/08/24 08:42:07:423 CEST [DEBUG] header - ->> "Content-type: text/xml; charset=UTF-8[\r][\n]"
> > 2005/08/24 08:42:07:423 CEST [DEBUG] header - ->> "tjenestenavn: ProduserDokumenter[\r][\n]"
> > 2005/08/24 08:42:07:423 CEST [DEBUG] header - ->> "User-Agent: Jakarta Commons-HttpClient/3.0-rc3[\r][\n]"
> > 2005/08/24 08:42:07:423 CEST [DEBUG] header - ->> "Content-Length: 4[\r][\n]"
> > 2005/08/24 08:42:07:423 CEST [DEBUG] header - ->> "Authorization: Digest username="fasade", realm="stonabs01.local", nonce="0e2d3dbd76a8c5011e374c54d57ab84d8ddf9fd314e5787353228f25a982823af5b72b7e43135956", uri="/fasadeTest/fasade.aspx", response="35bbc54f7ac47dfb8781fee6a3f22fcf", qop="auth", nc="00000001", cnonce="9e69b2e3d6a7b709d6b3ea386cde5e08", algorithm="MD5-sess"[\r][\n]"
> > 2005/08/24 08:42:07:423 CEST [DEBUG] header - ->> "Host: 85.19.64.181[\r][\n]"
> > 2005/08/24 08:42:07:423 CEST [DEBUG] header - ->> "[\r][\n]"
> > 2005/08/24 08:42:07:423 CEST [DEBUG] EntityEnclosingMethod - -Request body sent
> > 2005/08/24 08:42:07:517 CEST [DEBUG] header - -<< "HTTP/1.1 401 Unauthorized[\r][\n]"
> > 2005/08/24 08:42:07:517 CEST [DEBUG] header - -<< "Content-Length: 1539[\r][\n]"
> > 2005/08/24 08:42:07:517 CEST [DEBUG] header - -<< "Content-Type: text/html[\r][\n]"
> > 2005/08/24 08:42:07:517 CEST [DEBUG] header - -<< "Server: Microsoft-IIS/6.0[\r][\n]"
> > 2005/08/24 08:42:07:517 CEST [DEBUG] header - -<< "WWW-Authenticate: Digest qop="auth",algorithm=MD5-sess,nonce="106657bd76a8c501c9922e6ffc6a40172b71c1306bceeaa420b0ba3dbafbef3bfc5591ee5c3da357",charset=utf-8,realm="stonabs01.local"[\r][\n]"
> > 2005/08/24 08:42:07:517 CEST [DEBUG] header - -<< "X-Powered-By: ASP.NET[\r][\n]"
> > 2005/08/24 08:42:07:517 CEST [DEBUG] header - -<< "Date: Wed, 24 Aug 2005 06:40:38 GMT[\r][\n]"
> > 2005/08/24 08:42:07:517 CEST [DEBUG] HttpMethodDirector - -Authorization required
> > 2005/08/24 08:42:07:517 CEST [DEBUG] AuthChallengeProcessor - -Using authentication scheme: digest
> > 2005/08/24 08:42:07:517 CEST [DEBUG] AuthChallengeProcessor - -Authorization challenge processed
> > 2005/08/24 08:42:07:517 CEST [DEBUG] HttpMethodDirector - -Authentication scope: DIGEST 'stonabs01.local'@85.19.64.181:80
> > 2005/08/24 08:42:07:517 CEST [DEBUG] HttpMethodDirector - -Credentials required
> > 2005/08/24 08:42:07:517 CEST [DEBUG] HttpMethodDirector - -Credentials provider not available
> > 2005/08/24 08:42:07:517 CEST [INFO] HttpMethodDirector - -Failure authenticating with DIGEST 'stonabs01.local'@85.19.64.181:80
> > 2005/08/24 08:42:07:517 CEST [DEBUG] HttpMethodBase - -Resorting to protocol version default close connection policy
> > 2005/08/24 08:42:07:517 CEST [DEBUG] HttpMethodBase - -Should NOT close connection, using HTTP/1.1
> > 2005/08/24 08:42:07:517 CEST [DEBUG] HttpConnection - -Releasing connection back to connection manager.
> > HTTP/1.1 401 Unauthorized
> > 
> > 
> > rc1:
> > 2005/08/24 08:40:30:267 CEST [DEBUG] HttpClient - -Java version: 1.4.2_05
> > 2005/08/24 08:40:30:267 CEST [DEBUG] HttpClient - -Java vendor: Sun Microsystems Inc.
> > 2005/08/24 08:40:30:267 CEST [DEBUG] HttpClient - -Java class path: C:\commons-codec-1.2\commons-codec-1.2.jar;C:\workspace\Front-2.5.0-b2.4.1\lib\commons-logging.jar;C:\commons-httpclient-3.0-rc1\commons-httpclient-3.0-rc1.jar;C:\workspace\Front-2.5.0-b2.4.1\classes
> > 2005/08/24 08:40:30:267 CEST [DEBUG] HttpClient - -Operating system name: Windows 2000
> > 2005/08/24 08:40:30:267 CEST [DEBUG] HttpClient - -Operating system architecture: x86
> > 2005/08/24 08:40:30:267 CEST [DEBUG] HttpClient - -Operating system version: 5.0
> > 2005/08/24 08:40:30:392 CEST [DEBUG] HttpClient - -SUN 1.42: SUN (DSA key/parameter generation; DSA signing; SHA-1, MD5 digests; SecureRandom; X.509 certificates; JKS keystore; PKIX CertPathValidator; PKIX CertPathBuilder; LDAP, Collection CertStores)
> > 2005/08/24 08:40:30:392 CEST [DEBUG] HttpClient - -SunJSSE 1.42: Sun JSSE provider(implements RSA Signatures, PKCS12, SunX509 key/trust factories, SSLv3, TLSv1)
> > 2005/08/24 08:40:30:392 CEST [DEBUG] HttpClient - -SunRsaSign 1.42: SUN's provider for RSA signatures
> > 2005/08/24 08:40:30:392 CEST [DEBUG] HttpClient - -SunJCE 1.42: SunJCE Provider (implements DES, Triple DES, AES, Blowfish, PBE, Diffie-Hellman, HMAC-MD5, HMAC-SHA1)
> > 2005/08/24 08:40:30:392 CEST [DEBUG] HttpClient - -SunJGSS 1.0: Sun (Kerberos v5)
> > 2005/08/24 08:40:30:408 CEST [DEBUG] DefaultHttpParams - -Set parameter http.useragent = Jakarta Commons-HttpClient/3.0-rc1
> > 2005/08/24 08:40:30:408 CEST [DEBUG] DefaultHttpParams - -Set parameter http.protocol.version = HTTP/1.1
> > 2005/08/24 08:40:30:408 CEST [DEBUG] DefaultHttpParams - -Set parameter http.connection-manager.class = class org.apache.commons.httpclient.SimpleHttpConnectionManager
> > 2005/08/24 08:40:30:408 CEST [DEBUG] DefaultHttpParams - -Set parameter http.protocol.cookie-policy = rfc2109
> > 2005/08/24 08:40:30:408 CEST [DEBUG] DefaultHttpParams - -Set parameter http.protocol.element-charset = US-ASCII
> > 2005/08/24 08:40:30:408 CEST [DEBUG] DefaultHttpParams - -Set parameter http.protocol.content-charset = ISO-8859-1
> > 2005/08/24 08:40:30:408 CEST [DEBUG] DefaultHttpParams - -Set parameter http.method.retry-handler = org.apache.commons.httpclient.DefaultHttpMethodRetryHandler@17fa65e
> > 2005/08/24 08:40:30:423 CEST [DEBUG] DefaultHttpParams - -Set parameter http.dateparser.patterns = [EEE, dd MMM yyyy HH:mm:ss zzz, EEEE, dd-MMM-yy HH:mm:ss zzz, EEE MMM d HH:mm:ss yyyy, EEE, dd-MMM-yyyy HH:mm:ss z, EEE, dd-MMM-yyyy HH-mm-ss z, EEE, dd MMM yy HH:mm:ss z, EEE dd-MMM-yyyy HH:mm:ss z, EEE dd MMM yyyy HH:mm:ss z, EEE dd-MMM-yyyy HH-mm-ss z, EEE dd-MMM-yy HH:mm:ss z, EEE dd MMM yy HH:mm:ss z, EEE,dd-MMM-yy HH:mm:ss z, EEE,dd-MMM-yyyy HH:mm:ss z, EEE, dd-MM-yyyy HH:mm:ss z]
> > 2005/08/24 08:40:30:423 CEST [DEBUG] DefaultHttpParams - -Set parameter http.connection.timeout = 180000
> > 2005/08/24 08:40:30:423 CEST [DEBUG] DefaultHttpParams - -Set parameter http.auth.scheme-priority = [Digest]
> > 2005/08/24 08:40:30:423 CEST [DEBUG] DefaultHttpParams - -Set parameter http.socket.timeout = 180000
> > 2005/08/24 08:40:30:486 CEST [DEBUG] HttpConnection - -Open connection to 85.19.64.181:80
> > 2005/08/24 08:40:30:517 CEST [DEBUG] header - ->> "POST /fasadeTest/fasade.aspx HTTP/1.1[\r][\n]"
> > 2005/08/24 08:40:30:533 CEST [DEBUG] HttpMethodBase - -Adding Host request header
> > 2005/08/24 08:40:30:548 CEST [DEBUG] header - ->> "Content-type: text/xml; charset=UTF-8[\r][\n]"
> > 2005/08/24 08:40:30:548 CEST [DEBUG] header - ->> "tjenestenavn: ProduserDokumenter[\r][\n]"
> > 2005/08/24 08:40:30:548 CEST [DEBUG] header - ->> "User-Agent: Jakarta Commons-HttpClient/3.0-rc1[\r][\n]"
> > 2005/08/24 08:40:30:548 CEST [DEBUG] header - ->> "Host: 85.19.64.181[\r][\n]"
> > 2005/08/24 08:40:30:548 CEST [DEBUG] header - ->> "Content-Length: 4[\r][\n]"
> > 2005/08/24 08:40:30:548 CEST [DEBUG] header - ->> "[\r][\n]"
> > 2005/08/24 08:40:30:548 CEST [DEBUG] EntityEnclosingMethod - -Request body sent
> > 2005/08/24 08:40:30:564 CEST [DEBUG] header - -<< "HTTP/1.1 401 Unauthorized[\r][\n]"
> > 2005/08/24 08:40:30:564 CEST [DEBUG] header - -<< "Content-Length: 1656[\r][\n]"
> > 2005/08/24 08:40:30:564 CEST [DEBUG] header - -<< "Content-Type: text/html[\r][\n]"
> > 2005/08/24 08:40:30:564 CEST [DEBUG] header - -<< "Server: Microsoft-IIS/6.0[\r][\n]"
> > 2005/08/24 08:40:30:564 CEST [DEBUG] header - -<< "WWW-Authenticate: Digest qop="auth",algorithm=MD5-sess,nonce="e4c9988376a8c50109abadc5dc3b39c4d787a65a6d06771b1e39acb77e9ffedd3413ef7afd659def",charset=utf-8,realm="stonabs01.local"[\r][\n]"
> > 2005/08/24 08:40:30:564 CEST [DEBUG] header - -<< "X-Powered-By: ASP.NET[\r][\n]"
> > 2005/08/24 08:40:30:564 CEST [DEBUG] header - -<< "Date: Wed, 24 Aug 2005 06:39:01 GMT[\r][\n]"
> > 2005/08/24 08:40:30:564 CEST [DEBUG] HttpMethodDirector - -Authorization required
> > 2005/08/24 08:40:30:564 CEST [DEBUG] AuthChallengeProcessor - -Supported authentication schemes in the order of preference: [Digest]
> > 2005/08/24 08:40:30:564 CEST [INFO] AuthChallengeProcessor - -Digest authentication scheme selected
> > 2005/08/24 08:40:30:580 CEST [DEBUG] AuthChallengeProcessor - -Using authentication scheme: digest
> > 2005/08/24 08:40:30:595 CEST [DEBUG] HttpMethodBase - -Resorting to protocol version default close connection policy
> > 2005/08/24 08:40:30:595 CEST [DEBUG] HttpMethodBase - -Should NOT close connection, using HTTP/1.1
> > 2005/08/24 08:40:30:595 CEST [DEBUG] HttpConnection - -Connection is locked.  Call to releaseConnection() ignored.
> > 2005/08/24 08:40:30:595 CEST [DEBUG] HttpMethodDirector - -Authenticating with DIGEST 'stonabs01.local'@85.19.64.181:80
> > 2005/08/24 08:40:30:595 CEST [DEBUG] HttpMethodParams - -Credential charset not configured, using HTTP element charset
> > 2005/08/24 08:40:30:595 CEST [DEBUG] DigestScheme - -Using qop method auth
> > 2005/08/24 08:40:30:611 CEST [DEBUG] header - ->> "POST /fasadeTest/fasade.aspx HTTP/1.1[\r][\n]"
> > 2005/08/24 08:40:30:611 CEST [DEBUG] HttpMethodBase - -Adding Host request header
> > 2005/08/24 08:40:30:611 CEST [DEBUG] header - ->> "Content-type: text/xml; charset=UTF-8[\r][\n]"
> > 2005/08/24 08:40:30:611 CEST [DEBUG] header - ->> "tjenestenavn: ProduserDokumenter[\r][\n]"
> > 2005/08/24 08:40:30:611 CEST [DEBUG] header - ->> "User-Agent: Jakarta Commons-HttpClient/3.0-rc1[\r][\n]"
> > 2005/08/24 08:40:30:611 CEST [DEBUG] header - ->> "Content-Length: 4[\r][\n]"
> > 2005/08/24 08:40:30:611 CEST [DEBUG] header - ->> "Authorization: Digest username="fasade", realm="stonabs01.local", nonce="e4c9988376a8c50109abadc5dc3b39c4d787a65a6d06771b1e39acb77e9ffedd3413ef7afd659def", uri="/fasadeTest/fasade.aspx", response="969755093f105aa1f601090d7d73c3e5", qop="auth", nc=00000001, cnonce="6cad1426dd02f504a711346f6a30a9e5", algorithm="MD5-sess"[\r][\n]"
> > 2005/08/24 08:40:30:611 CEST [DEBUG] header - ->> "Host: 85.19.64.181[\r][\n]"
> > 2005/08/24 08:40:30:611 CEST [DEBUG] header - ->> "[\r][\n]"
> > 2005/08/24 08:40:30:611 CEST [DEBUG] EntityEnclosingMethod - -Request body sent
> > 2005/08/24 08:40:52:048 CEST [DEBUG] header - -<< "HTTP/1.1 200 OK[\r][\n]"
> > 2005/08/24 08:40:52:064 CEST [DEBUG] header - -<< "Date: Wed, 24 Aug 2005 06:39:23 GMT[\r][\n]"
> > 2005/08/24 08:40:52:064 CEST [DEBUG] header - -<< "Server: Microsoft-IIS/6.0[\r][\n]"
> > 2005/08/24 08:40:52:064 CEST [DEBUG] header - -<< "X-Powered-By: ASP.NET[\r][\n]"
> > 2005/08/24 08:40:52:064 CEST [DEBUG] header - -<< "X-AspNet-Version: 1.1.4322[\r][\n]"HTTP/1.1 200 OK
> > 
> > 2005/08/24 08:40:52:064 CEST [DEBUG] header - -<< "Transfer-Encoding: chunked[\r][\n]"
> > 2005/08/24 08:40:52:064 CEST [DEBUG] header - -<< "Cache-Control: private[\r][\n]"
> > 2005/08/24 08:40:52:064 CEST [DEBUG] header - -<< "Content-Type: text/xml; charset=utf-8[\r][\n]"
> > 2005/08/24 08:40:52:626 CEST [DEBUG] HttpMethodBase - -Resorting to protocol version default close connection policy
> > 2005/08/24 08:40:52:626 CEST [DEBUG] HttpMethodBase - -Should NOT close connection, using HTTP/1.1
> > 2005/08/24 08:40:52:626 CEST [DEBUG] HttpConnection - -Releasing connection back to connection manager.
> > 
> > 
> > -----Opprinnelig melding-----
> > Fra: Oleg Kalnichevski [mailto:olegk@apache.org]
> > Sendt: 23. august 2005 15:56
> > Til: httpclient-user@jakarta.apache.org
> > Emne: Re: SV: SV: Problem with digest authentication
> > 
> > 
> > On Tue, Aug 23, 2005 at 03:20:55PM +0200, Ole-Henrik Wettre wrote:
> > > Because I didn't get 401 unauthorized from IIS, but 500 internal server error from the application. That is because of invalid input, but it means i got past IIS's authentication.
> > > 
> > 
> > I would not be so sure. I'll believe it when I see 200 OK.
> > 
> > These are auth responses produced by different versions of HttpClient. I am unable to spot any significant difference (aside from nc and algorithm attribute values enclosed in quotes, which is okay).
> > 
> > 3.0rc3
> > =======
> > WWW-Authenticate: Digest 
> >   qop="auth",
> >   algorithm=MD5-sess,
> >   nonce="ff3426aecea7c501db21346e1183eb3211f56694b71ba62722b7a6c841a4f6fd3e4d4c4b4f29963e",
> >   charset=utf-8,
> >   realm="stonabs01.local"
> > 
> > Authorization: Digest 
> >   username="fasade", 
> >   realm="stonabs01.local", 
> >   nonce="ff3426aecea7c501db21346e1183eb3211f56694b71ba62722b7a6c841a4f6fd3e4d4c4b4f29963e",
> >   uri="/fasadeTest/fasade.aspx", 
> >   response="205bec5a96e994943a16e6b52d3a6bf8", 
> >   qop="auth", 
> >   nc="00000001", 
> >   cnonce="1c59d158f79183d3b84c2b8bbeea6d8a", 
> >   algorithm="MD5-sess"
> >   
> > 3.0rc1
> > =======
> > WWW-Authenticate: Digest 
> >   qop="auth",
> >   algorithm=MD5-sess,
> >   nonce="2e90b3d3daa7c5010586cfc72321e0cbfecefb1d4204aaf547a9860b710564be899d244cfb0b1f75",
> >   charset=utf-8,
> >   realm="stonabs01.local"
> >   
> > Authorization: Digest 
> >   username="fasade", 
> >   realm="stonabs01.local", 
> >   nonce="2e90b3d3daa7c5010586cfc72321e0cbfecefb1d4204aaf547a9860b710564be899d244cfb0b1f75",
> >   uri="/fasadeTest/fasade.aspx", 
> >   response="a300e857782ff908fcb4f007a7050a26", 
> >   qop="auth", 
> >   nc=00000001, 
> >   cnonce="513fad3af291a50a22ff73e5128c0c85", 
> >   algorithm="MD5-sess"
> > 
> > 
> > There have been only two changes to the DigestScheme class since the rc1:
> > 
> > http://issues.apache.org/bugzilla/show_bug.cgi?id=34960
> > http://issues.apache.org/bugzilla/show_bug.cgi?id=34961
> > 
> > Only bug #34960 may have had a bearing on the problem, but since you are not using non-ASCII chars in credentials it should not have. I'll carry on digging provided you can produce a wire log of an HTTP session that demonstrates a successfully authenticated request (that is, the one followed by 200 OK response)
> > 
> > Oleg
> > 
> > 
> > > I'm not using non-ASCII characters in neither username nor password.
> > > 
> > > Ole
> > > 
> > > -----Opprinnelig melding-----
> > > Fra: Oleg Kalnichevski [mailto:olegk@apache.org]
> > > Sendt: 23. august 2005 14:52
> > > Til: httpclient-user@jakarta.apache.org
> > > Emne: Re: SV: Problem with digest authentication
> > > 
> > > 
> > > On Tue, Aug 23, 2005 at 02:29:01PM +0200, Ole-Henrik Wettre wrote:
> > > > Here you go. The 500 error is OK for this test
> > > 
> > > How come? What makes you think the request got authorized?
> > > 
> > > You are not using non-ASCII (Norwegian) characters in the user name or
> > > password, are you?
> > > 
> > > Oleg
> > > 
> > > 
> > > > 
> > > > 2005/08/23 14:05:50:923 CEST [DEBUG] HttpClient - -Java version: 1.4.2_05
> > > > 2005/08/23 14:05:50:939 CEST [DEBUG] HttpClient - -Java vendor: Sun Microsystems Inc.
> > > > 2005/08/23 14:05:50:939 CEST [DEBUG] HttpClient - -Java class path: C:\commons-codec-1.2\commons-codec-1.2.jar;C:\workspace\Front-2.5.0-b2.4.1\lib\commons-logging.jar;C:\commons-httpclient-3.0-rc1\commons-httpclient-3.0-rc1.jar;C:\workspace\Front-2.5.0-b2.4.1\classes
> > > > 2005/08/23 14:05:50:939 CEST [DEBUG] HttpClient - -Operating system name: Windows 2000
> > > > 2005/08/23 14:05:50:955 CEST [DEBUG] HttpClient - -Operating system architecture: x86
> > > > 2005/08/23 14:05:50:955 CEST [DEBUG] HttpClient - -Operating system version: 5.0
> > > > 2005/08/23 14:05:52:611 CEST [DEBUG] HttpClient - -SUN 1.42: SUN (DSA key/parameter generation; DSA signing; SHA-1, MD5 digests; SecureRandom; X.509 certificates; JKS keystore; PKIX CertPathValidator; PKIX CertPathBuilder; LDAP, Collection CertStores)
> > > > 2005/08/23 14:05:52:611 CEST [DEBUG] HttpClient - -SunJSSE 1.42: Sun JSSE provider(implements RSA Signatures, PKCS12, SunX509 key/trust factories, SSLv3, TLSv1)
> > > > 2005/08/23 14:05:52:611 CEST [DEBUG] HttpClient - -SunRsaSign 1.42: SUN's provider for RSA signatures
> > > > 2005/08/23 14:05:52:611 CEST [DEBUG] HttpClient - -SunJCE 1.42: SunJCE Provider (implements DES, Triple DES, AES, Blowfish, PBE, Diffie-Hellman, HMAC-MD5, HMAC-SHA1)
> > > > 2005/08/23 14:05:52:642 CEST [DEBUG] HttpClient - -SunJGSS 1.0: Sun (Kerberos v5)
> > > > 2005/08/23 14:05:52:642 CEST [DEBUG] DefaultHttpParams - -Set parameter http.useragent = Jakarta Commons-HttpClient/3.0-rc1
> > > > 2005/08/23 14:05:52:642 CEST [DEBUG] DefaultHttpParams - -Set parameter http.protocol.version = HTTP/1.1
> > > > 2005/08/23 14:05:52:673 CEST [DEBUG] DefaultHttpParams - -Set parameter http.connection-manager.class = class org.apache.commons.httpclient.SimpleHttpConnectionManager
> > > > 2005/08/23 14:05:52:673 CEST [DEBUG] DefaultHttpParams - -Set parameter http.protocol.cookie-policy = rfc2109
> > > > 2005/08/23 14:05:52:673 CEST [DEBUG] DefaultHttpParams - -Set parameter http.protocol.element-charset = US-ASCII
> > > > 2005/08/23 14:05:52:673 CEST [DEBUG] DefaultHttpParams - -Set parameter http.protocol.content-charset = ISO-8859-1
> > > > 2005/08/23 14:05:52:783 CEST [DEBUG] DefaultHttpParams - -Set parameter http.method.retry-handler = org.apache.commons.httpclient.DefaultHttpMethodRetryHandler@6e3d60
> > > > 2005/08/23 14:05:52:814 CEST [DEBUG] DefaultHttpParams - -Set parameter http.dateparser.patterns = [EEE, dd MMM yyyy HH:mm:ss zzz, EEEE, dd-MMM-yy HH:mm:ss zzz, EEE MMM d HH:mm:ss yyyy, EEE, dd-MMM-yyyy HH:mm:ss z, EEE, dd-MMM-yyyy HH-mm-ss z, EEE, dd MMM yy HH:mm:ss z, EEE dd-MMM-yyyy HH:mm:ss z, EEE dd MMM yyyy HH:mm:ss z, EEE dd-MMM-yyyy HH-mm-ss z, EEE dd-MMM-yy HH:mm:ss z, EEE dd MMM yy HH:mm:ss z, EEE,dd-MMM-yy HH:mm:ss z, EEE,dd-MMM-yyyy HH:mm:ss z, EEE, dd-MM-yyyy HH:mm:ss z]
> > > > 2005/08/23 14:05:52:876 CEST [DEBUG] DefaultHttpParams - -Set parameter http.auth.scheme-priority = [Digest]
> > > > 2005/08/23 14:05:53:251 CEST [DEBUG] HttpConnection - -Open connection to 85.19.64.181:80
> > > > 2005/08/23 14:05:53:955 CEST [DEBUG] header - ->> "GET /fasadeTest/fasade.aspx HTTP/1.1[\r][\n]"
> > > > 2005/08/23 14:05:53:955 CEST [DEBUG] HttpMethodBase - -Adding Host request header
> > > > 2005/08/23 14:05:54:001 CEST [DEBUG] header - ->> "User-Agent: Jakarta Commons-HttpClient/3.0-rc1[\r][\n]"
> > > > 2005/08/23 14:05:54:001 CEST [DEBUG] header - ->> "Host: 85.19.64.181[\r][\n]"
> > > > 2005/08/23 14:05:54:017 CEST [DEBUG] header - ->> "[\r][\n]"
> > > > 2005/08/23 14:05:54:033 CEST [DEBUG] header - -<< "HTTP/1.1 401 Unauthorized[\r][\n]"
> > > > 2005/08/23 14:05:54:033 CEST [DEBUG] header - -<< "Content-Length: 1656[\r][\n]"
> > > > 2005/08/23 14:05:54:033 CEST [DEBUG] header - -<< "Content-Type: text/html[\r][\n]"
> > > > 2005/08/23 14:05:54:033 CEST [DEBUG] header - -<< "Server: Microsoft-IIS/6.0[\r][\n]"
> > > > 2005/08/23 14:05:54:033 CEST [DEBUG] header - -<< "WWW-Authenticate: Digest qop="auth",algorithm=MD5-sess,nonce="2e90b3d3daa7c5010586cfc72321e0cbfecefb1d4204aaf547a9860b710564be899d244cfb0b1f75",charset=utf-8,realm="stonabs01.local"[\r][\n]"
> > > > 2005/08/23 14:05:54:033 CEST [DEBUG] header - -<< "X-Powered-By: ASP.NET[\r][\n]"
> > > > 2005/08/23 14:05:54:033 CEST [DEBUG] header - -<< "Date: Tue, 23 Aug 2005 12:04:34 GMT[\r][\n]"
> > > > 2005/08/23 14:05:54:033 CEST [DEBUG] HttpMethodDirector - -Authorization required
> > > > 2005/08/23 14:05:54:064 CEST [DEBUG] AuthChallengeProcessor - -Supported authentication schemes in the order of preference: [Digest]
> > > > 2005/08/23 14:05:54:064 CEST [INFO] AuthChallengeProcessor - -Digest authentication scheme selected
> > > > 2005/08/23 14:05:54:095 CEST [DEBUG] AuthChallengeProcessor - -Using authentication scheme: digest
> > > > 2005/08/23 14:05:54:095 CEST [DEBUG] HttpMethodBase - -Resorting to protocol version default close connection policy
> > > > 2005/08/23 14:05:54:095 CEST [DEBUG] HttpMethodBase - -Should NOT close connection, using HTTP/1.1
> > > > 2005/08/23 14:05:54:095 CEST [DEBUG] HttpConnection - -Connection is locked.  Call to releaseConnection() ignored.
> > > > 2005/08/23 14:05:54:111 CEST [DEBUG] HttpMethodDirector - -Authenticating with DIGEST 'stonabs01.local'@85.19.64.181:80
> > > > 2005/08/23 14:05:54:111 CEST [DEBUG] HttpMethodParams - -Credential charset not configured, using HTTP element charset
> > > > 2005/08/23 14:05:54:111 CEST [DEBUG] DigestScheme - -Using qop method auth
> > > > 2005/08/23 14:05:54:220 CEST [DEBUG] header - ->> "GET /fasadeTest/fasade.aspx HTTP/1.1[\r][\n]"
> > > > 2005/08/23 14:05:54:220 CEST [DEBUG] HttpMethodBase - -Adding Host request header
> > > > 2005/08/23 14:05:54:220 CEST [DEBUG] header - ->> "User-Agent: Jakarta Commons-HttpClient/3.0-rc1[\r][\n]"
> > > > 2005/08/23 14:05:54:220 CEST [DEBUG] header - ->> "Authorization: Digest username="fasade", realm="stonabs01.local", nonce="2e90b3d3daa7c5010586cfc72321e0cbfecefb1d4204aaf547a9860b710564be899d244cfb0b1f75", uri="/fasadeTest/fasade.aspx", response="a300e857782ff908fcb4f007a7050a26", qop="auth", nc=00000001, cnonce="513fad3af291a50a22ff73e5128c0c85", algorithm="MD5-sess"[\r][\n]"
> > > > 2005/08/23 14:05:54:220 CEST [DEBUG] header - ->> "Host: 85.19.64.181[\r][\n]"
> > > > 2005/08/23 14:05:54:220 CEST [DEBUG] header - ->> "[\r][\n]"
> > > > 2005/08/23 14:05:54:486 CEST [DEBUG] header - -<< "HTTP/1.1 500 Internal Server Error[\r][\n]"
> > > > 2005/08/23 14:05:54:486 CEST [DEBUG] header - -<< "Date: Tue, 23 Aug 2005 12:04:35 GMT[\r][\n]"
> > > > 2005/08/23 14:05:54:486 CEST [DEBUG] header - -<< "Server: Microsoft-IIS/6.0[\r][\n]"
> > > > 2005/08/23 14:05:54:486 CEST [DEBUG] header - -<< "X-Powered-By: ASP.NET[\r][\n]"
> > > > 2005/08/23 14:05:54:486 CEST [DEBUG] header - -<< "X-AspNet-Version: 1.1.4322[\r][\n]"
> > > > 2005/08/23 14:05:54:486 CEST [DEBUG] header - -<< "Cache-Control: private[\r][\n]"
> > > > 2005/08/23 14:05:54:486 CEST [DEBUG] header - -<< "Content-Type: text/html; charset=utf-8[\r][\n]"
> > > > 2005/08/23 14:05:54:486 CEST [DEBUG] header - -<< "Content-Length: 3036[\r][\n]"
> > > > 2005/08/23 14:05:54:486 CEST [DEBUG] HttpMethodBase - -Resorting to protocol version default close connection policy
> > > > 2005/08/23 14:05:54:486 CEST [DEBUG] HttpMethodBase - -Should NOT close connection, using HTTP/1.1
> > > > 2005/08/23 14:05:54:486 CEST [DEBUG] HttpConnection - -Releasing connection back to connection manager.
> > > > 
> > > > -----Opprinnelig melding-----
> > > > Fra: Oleg Kalnichevski [mailto:olegk@apache.org]
> > > > Sendt: 23. august 2005 14:03
> > > > Til: httpclient-user@jakarta.apache.org
> > > > Emne: Re: Problem with digest authentication
> > > > 
> > > > 
> > > > Ole-Henrik,
> > > > 
> > > > I see no obvious problem with the HTTP session. It appears as if the
> > > > server rejected the request due to the credentials being invalid. Could
> > > > you please produce a log of the same HTTP session using 3.0rc1 which you
> > > > believe does not exhibit the problem.
> > > > 
> > > > Oleg
> > > > 
> > > > 
> > > > On Tue, Aug 23, 2005 at 12:39:52PM +0200, Ole-Henrik Wettre wrote:
> > > > > I'm trying to use digest authentication with 3.0rc3 against an IIS 6.0 on Windows 2003 sp1 server.
> > > > > IIS responds with a 401 Unauthorized. It works fine with 3.0rc1 or 2.0.2
> > > > > 
> > > > > code:
> > > > > 
> > > > >         URL url = null;
> > > > >         try {
> > > > >             url = new URL("http://85.19.64.181/fasadeTest/fasade.aspx");
> > > > >         }
> > > > >         catch (MalformedURLException e) {
> > > > >             e.printStackTrace();
> > > > >         }
> > > > >         HttpClient httpClient = new HttpClient();
> > > > >         List authPrefs = new ArrayList(1);
> > > > >         authPrefs.add(AuthPolicy.DIGEST);
> > > > >         httpClient.getParams().setParameter(AuthPolicy.AUTH_SCHEME_PRIORITY, authPrefs);
> > > > >         final String brukernavn = "fasade";
> > > > >         final String passord = "Omb1234";
> > > > >         Credentials credentials = new UsernamePasswordCredentials(brukernavn, passord);
> > > > >         AuthScope authScope = new AuthScope(url.getHost(), url.getPort());
> > > > >         httpClient.getState().setCredentials(authScope, credentials);
> > > > > 
> > > > >         GetMethod getMethod = new GetMethod(url.toExternalForm());
> > > > >         
> > > > >         getMethod.setDoAuthentication(true);
> > > > > 
> > > > >         try {
> > > > >             int result = httpClient.executeMethod(getMethod);
> > > > >             
> > > > >             if (result != 200) {
> > > > >                 System.out.println("En feil har oppst?tt under dokumentbehandling: " + result + getMethod.getStatusText());
> > > > >             }
> > > > >         }
> > > > >         catch (Exception e) {
> > > > >             e.printStackTrace();
> > > > >         }
> > > > >         finally {
> > > > >             getMethod.releaseConnection();
> > > > >         }
> > > > > 
> > > > > 
> > > > > 
> > > > > wire trace:
> > > > > 2005/08/23 12:38:55:736 CEST [DEBUG] HttpClient - -Java version: 1.4.2_05
> > > > > 2005/08/23 12:38:55:736 CEST [DEBUG] HttpClient - -Java vendor: Sun Microsystems Inc.
> > > > > 2005/08/23 12:38:55:736 CEST [DEBUG] HttpClient - -Java class path: C:\commons-codec-1.2\commons-codec-1.2.jar;C:\workspace\Front-2.5.0-b2.4.1\lib\commons-logging.jar;C:\commons-httpclient-3.0-rc3\commons-httpclient-3.0-rc3.jar;C:\workspace\Front-2.5.0-b2.4.1\classes
> > > > > 2005/08/23 12:38:55:736 CEST [DEBUG] HttpClient - -Operating system name: Windows 2000
> > > > > 2005/08/23 12:38:55:736 CEST [DEBUG] HttpClient - -Operating system architecture: x86
> > > > > 2005/08/23 12:38:55:736 CEST [DEBUG] HttpClient - -Operating system version: 5.0
> > > > > 2005/08/23 12:38:55:861 CEST [DEBUG] HttpClient - -SUN 1.42: SUN (DSA key/parameter generation; DSA signing; SHA-1, MD5 digests; SecureRandom; X.509 certificates; JKS keystore; PKIX CertPathValidator; PKIX CertPathBuilder; LDAP, Collection CertStores)
> > > > > 2005/08/23 12:38:55:861 CEST [DEBUG] HttpClient - -SunJSSE 1.42: Sun JSSE provider(implements RSA Signatures, PKCS12, SunX509 key/trust factories, SSLv3, TLSv1)
> > > > > 2005/08/23 12:38:55:861 CEST [DEBUG] HttpClient - -SunRsaSign 1.42: SUN's provider for RSA signatures
> > > > > 2005/08/23 12:38:55:861 CEST [DEBUG] HttpClient - -SunJCE 1.42: SunJCE Provider (implements DES, Triple DES, AES, Blowfish, PBE, Diffie-Hellman, HMAC-MD5, HMAC-SHA1)
> > > > > 2005/08/23 12:38:55:861 CEST [DEBUG] HttpClient - -SunJGSS 1.0: Sun (Kerberos v5)
> > > > > 2005/08/23 12:38:55:861 CEST [DEBUG] DefaultHttpParams - -Set parameter http.useragent = Jakarta Commons-HttpClient/3.0-rc3
> > > > > 2005/08/23 12:38:55:876 CEST [DEBUG] DefaultHttpParams - -Set parameter http.protocol.version = HTTP/1.1
> > > > > 2005/08/23 12:38:55:876 CEST [DEBUG] DefaultHttpParams - -Set parameter http.connection-manager.class = class org.apache.commons.httpclient.SimpleHttpConnectionManager
> > > > > 2005/08/23 12:38:55:876 CEST [DEBUG] DefaultHttpParams - -Set parameter http.protocol.cookie-policy = rfc2109
> > > > > 2005/08/23 12:38:55:876 CEST [DEBUG] DefaultHttpParams - -Set parameter http.protocol.element-charset = US-ASCII
> > > > > 2005/08/23 12:38:55:876 CEST [DEBUG] DefaultHttpParams - -Set parameter http.protocol.content-charset = ISO-8859-1
> > > > > 2005/08/23 12:38:55:876 CEST [DEBUG] DefaultHttpParams - -Set parameter http.method.retry-handler = org.apache.commons.httpclient.DefaultHttpMethodRetryHandler@1786e64
> > > > > 2005/08/23 12:38:55:876 CEST [DEBUG] DefaultHttpParams - -Set parameter http.dateparser.patterns = [EEE, dd MMM yyyy HH:mm:ss zzz, EEEE, dd-MMM-yy HH:mm:ss zzz, EEE MMM d HH:mm:ss yyyy, EEE, dd-MMM-yyyy HH:mm:ss z, EEE, dd-MMM-yyyy HH-mm-ss z, EEE, dd MMM yy HH:mm:ss z, EEE dd-MMM-yyyy HH:mm:ss z, EEE dd MMM yyyy HH:mm:ss z, EEE dd-MMM-yyyy HH-mm-ss z, EEE dd-MMM-yy HH:mm:ss z, EEE dd MMM yy HH:mm:ss z, EEE,dd-MMM-yy HH:mm:ss z, EEE,dd-MMM-yyyy HH:mm:ss z, EEE, dd-MM-yyyy HH:mm:ss z]
> > > > > 2005/08/23 12:38:55:876 CEST [DEBUG] DefaultHttpParams - -Set parameter http.auth.scheme-priority = [Digest]
> > > > > 2005/08/23 12:38:55:939 CEST [DEBUG] HttpConnection - -Open connection to 85.19.64.181:80
> > > > > 2005/08/23 12:38:55:970 CEST [DEBUG] header - ->> "GET /fasadeTest/fasade.aspx HTTP/1.1[\r][\n]"
> > > > > 2005/08/23 12:38:55:970 CEST [DEBUG] HttpMethodBase - -Adding Host request header
> > > > > 2005/08/23 12:38:55:986 CEST [DEBUG] header - ->> "User-Agent: Jakarta Commons-HttpClient/3.0-rc3[\r][\n]"
> > > > > 2005/08/23 12:38:55:986 CEST [DEBUG] header - ->> "Host: 85.19.64.181[\r][\n]"
> > > > > 2005/08/23 12:38:55:986 CEST [DEBUG] header - ->> "[\r][\n]"
> > > > > 2005/08/23 12:38:56:001 CEST [DEBUG] header - -<< "HTTP/1.1 401 Unauthorized[\r][\n]"
> > > > > 2005/08/23 12:38:56:001 CEST [DEBUG] header - -<< "Content-Length: 1656[\r][\n]"
> > > > > 2005/08/23 12:38:56:001 CEST [DEBUG] header - -<< "Content-Type: text/html[\r][\n]"
> > > > > 2005/08/23 12:38:56:001 CEST [DEBUG] header - -<< "Server: Microsoft-IIS/6.0[\r][\n]"
> > > > > 2005/08/23 12:38:56:001 CEST [DEBUG] header - -<< "WWW-Authenticate: Digest qop="auth",algorithm=MD5-sess,nonce="ff3426aecea7c501db21346e1183eb3211f56694b71ba62722b7a6c841a4f6fd3e4d4c4b4f29963e",charset=utf-8,realm="stonabs01.local"[\r][\n]"
> > > > > 2005/08/23 12:38:56:001 CEST [DEBUG] header - -<< "X-Powered-By: ASP.NET[\r][\n]"
> > > > > 2005/08/23 12:38:56:001 CEST [DEBUG] header - -<< "Date: Tue, 23 Aug 2005 10:37:37 GMT[\r][\n]"
> > > > > 2005/08/23 12:38:56:017 CEST [DEBUG] HttpMethodDirector - -Authorization required
> > > > > 2005/08/23 12:38:56:017 CEST [DEBUG] AuthChallengeProcessor - -Supported authentication schemes in the order of preference: [Digest]
> > > > > 2005/08/23 12:38:56:017 CEST [INFO] AuthChallengeProcessor - -Digest authentication scheme selected
> > > > > 2005/08/23 12:38:56:017 CEST [DEBUG] AuthChallengeProcessor - -Using authentication scheme: digest
> > > > > 2005/08/23 12:38:56:033 CEST [DEBUG] AuthChallengeProcessor - -Authorization challenge processed
> > > > > 2005/08/23 12:38:56:033 CEST [DEBUG] HttpMethodDirector - -Authentication scope: DIGEST 'stonabs01.local'@85.19.64.181:80
> > > > > 2005/08/23 12:38:56:033 CEST [DEBUG] HttpMethodDirector - -Retry authentication
> > > > > 2005/08/23 12:38:56:033 CEST [DEBUG] HttpMethodBase - -Resorting to protocol version default close connection policy
> > > > > 2005/08/23 12:38:56:033 CEST [DEBUG] HttpMethodBase - -Should NOT close connection, using HTTP/1.1
> > > > > 2005/08/23 12:38:56:033 CEST [DEBUG] HttpConnection - -Connection is locked.  Call to releaseConnection() ignored.
> > > > > 2005/08/23 12:38:56:033 CEST [DEBUG] HttpMethodDirector - -Authenticating with DIGEST 'stonabs01.local'@85.19.64.181:80
> > > > > 2005/08/23 12:38:56:048 CEST [DEBUG] DigestScheme - -Using qop method auth
> > > > > 2005/08/23 12:38:56:064 CEST [DEBUG] header - ->> "GET /fasadeTest/fasade.aspx HTTP/1.1[\r][\n]"
> > > > > 2005/08/23 12:38:56:064 CEST [DEBUG] HttpMethodBase - -Adding Host request header
> > > > > 2005/08/23 12:38:56:064 CEST [DEBUG] header - ->> "User-Agent: Jakarta Commons-HttpClient/3.0-rc3[\r][\n]"
> > > > > 2005/08/23 12:38:56:064 CEST [DEBUG] header - ->> "Authorization: Digest username="fasade", realm="stonabs01.local", nonce="ff3426aecea7c501db21346e1183eb3211f56694b71ba62722b7a6c841a4f6fd3e4d4c4b4f29963e", uri="/fasadeTest/fasade.aspx", response="205bec5a96e994943a16e6b52d3a6bf8", qop="auth", nc="00000001", cnonce="1c59d158f79183d3b84c2b8bbeea6d8a", algorithm="MD5-sess"[\r][\n]"
> > > > > 2005/08/23 12:38:56:064 CEST [DEBUG] header - ->> "Host: 85.19.64.181[\r][\n]"
> > > > > 2005/08/23 12:38:56:064 CEST [DEBUG] header - ->> "[\r][\n]"
> > > > > 2005/08/23 12:38:56:080 CEST [DEBUG] header - -<< "HTTP/1.1 401 Unauthorized[\r][\n]"
> > > > > 2005/08/23 12:38:56:080 CEST [DEBUG] header - -<< "Content-Length: 1539[\r][\n]"
> > > > > 2005/08/23 12:38:56:080 CEST [DEBUG] header - -<< "Content-Type: text/html[\r][\n]"
> > > > > 2005/08/23 12:38:56:080 CEST [DEBUG] header - -<< "Server: Microsoft-IIS/6.0[\r][\n]"
> > > > > 2005/08/23 12:38:56:095 CEST [DEBUG] header - -<< "WWW-Authenticate: Digest qop="auth",algorithm=MD5-sess,nonce="a38234aecea7c5016432e63e67459189008baeaf9adf7b7a193642ede695fa7feaa81619eac56da5",charset=utf-8,realm="stonabs01.local"[\r][\n]"
> > > > > 2005/08/23 12:38:56:095 CEST [DEBUG] header - -<< "X-Powered-By: ASP.NET[\r][\n]"
> > > > > 2005/08/23 12:38:56:095 CEST [DEBUG] header - -<< "Date: Tue, 23 Aug 2005 10:37:37 GMT[\r][\n]"
> > > > > 2005/08/23 12:38:56:095 CEST [DEBUG] HttpMethodDirector - -Authorization required
> > > > > 2005/08/23 12:38:56:095 CEST [DEBUG] AuthChallengeProcessor - -Using authentication scheme: digest
> > > > > 2005/08/23 12:38:56:095 CEST [DEBUG] AuthChallengeProcessor - -Authorization challenge processed
> > > > > 2005/08/23 12:38:56:095 CEST [DEBUG] HttpMethodDirector - -Authentication scope: DIGEST 'stonabs01.local'@85.19.64.181:80
> > > > > 2005/08/23 12:38:56:095 CEST [DEBUG] HttpMethodDirector - -Credentials required
> > > > > 2005/08/23 12:38:56:095 CEST [DEBUG] HttpMethodDirector - -Credentials provider not available
> > > > > 2005/08/23 12:38:56:095 CEST [INFO] HttpMethodDirector - -Failure authenticating with DIGEST 'stonabs01.local'@85.19.64.181:80
> > > > > En feil har oppst?tt under dokumentbehandling: 401Unauthorized
> > > > > 2005/08/23 12:38:56:095 CEST [DEBUG] HttpMethodBase - -Resorting to protocol version default close connection policy
> > > > > 2005/08/23 12:38:56:095 CEST [DEBUG] HttpMethodBase - -Should NOT close connection, using HTTP/1.1
> > > > > 2005/08/23 12:38:56:095 CEST [DEBUG] HttpConnection - -Releasing connection back to connection manager.
> > > > > 
> > > > 
> > > > ---------------------------------------------------------------------
> > > > To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org
> > > > For additional commands, e-mail: httpclient-user-help@jakarta.apache.org
> > > > 
> > > > 
> > > > ---------------------------------------------------------------------
> > > > To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org
> > > > For additional commands, e-mail: httpclient-user-help@jakarta.apache.org
> > > > 
> > > > 
> > > 
> > > ---------------------------------------------------------------------
> > > To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org
> > > For additional commands, e-mail: httpclient-user-help@jakarta.apache.org
> > > 
> > > 
> > > ---------------------------------------------------------------------
> > > To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org
> > > For additional commands, e-mail: httpclient-user-help@jakarta.apache.org
> > > 
> > > 
> > 
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org
> > For additional commands, e-mail: httpclient-user-help@jakarta.apache.org
> > 
> > 
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org
> > For additional commands, e-mail: httpclient-user-help@jakarta.apache.org
> > 
> > 
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: httpclient-user-help@jakarta.apache.org
> 
> 

---------------------------------------------------------------------
To unsubscribe, e-mail: httpclient-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: httpclient-user-help@jakarta.apache.org


Mime
View raw message