hc-httpclient-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "luciano.musacchio" <luciano.musacc...@gmail.com>
Subject Re: Challenge for Basic authentication scheme not available (?)
Date Tue, 24 Jan 2012 19:04:55 GMT

Thanks Oleg, I've tried preemptive BASIC auth with the same luck.

I think I've found a mail from you that is most related with my particular
issue: that is, using a basic-auth proxy (probably badly configured, so,
also preemptive) to access SSL content. This should be done with a tunnel
through the proxy, right?

I've tried your code and get 500/Internal Server Error:
http://svn.apache.org/repos/asf/httpcomponents/httpclient/trunk/httpclient/src/examples/org/apache/http/examples/client/ProxyTunnelDemo.java

If I can't go any further with httpclient I'll need to user something from a
lower-level, right?, I think that this (very old) article tackles my
problem:
http://www.javaworld.com/javaworld/javatips/jw-javatip111.html

.. the informed guess then seems to be the JSSE library:
http://docs.oracle.com/javase/6/docs/technotes/guides/security/jsse/JSSERefGuide.html#SecureConnSample
.. what do you think?


Thank you very much,
Luciano.



olegk wrote:
> 
> On Sun, 2012-01-22 at 14:07 -0800, luciano.musacchio wrote:
>> Thanks Oleg for your reply. Could it be that the proxy is announcing just
>> NTLM but it actually does accept BASIC auth? I mean, I could authenticate
>> using curl:
>> 
> 
> Yes, this is quite likely. In any way the fault clearly lies with the
> proxy. Nevertheless, you can configure HttpClient the same way as curl
> by making it use preemptive BASIC authentication.
> 
> Oleg
> 
> 
>> C:\Users\musacchl\Desktop\curl\bin>curl -v --proxy-basic --proxy-user
>> <user>:<password> --url http://www.google.com.ar --proxy
>> http://144.72.225.21:80/
>> * About to connect() to proxy 144.72.225.21 port 80 (#0)
>> *   Trying 144.72.225.21... connected
>> * Proxy auth using Basic with user '<user>'
>> > GET http://www.google.com.ar HTTP/1.1
>> > Proxy-Authorization: Basic Z21wMTgwOm1hZVQwMTIz
>> > User-Agent: curl/7.23.1 (i386-pc-win32) libcurl/7.23.1 OpenSSL/0.9.8r
>> > zlib/1.2
>> .5 libidn/1.18 libssh2/1.3.0 librtmp/2.3
>> > Host: www.google.com.ar
>> > Accept: */*
>> > Proxy-Connection: Keep-Alive
>> >
>> < HTTP/1.1 200 OK
>> < Date: Sun, 22 Jan 2012 22:04:21 GMT
>> < Expires: -1
>> < Cache-Control: private, max-age=0
>> < Content-Type: text/html; charset=ISO-8859-1
>> < P3P: CP="This is not a P3P policy! See
>> http://www.google.com/support/accounts/
>> bin/answer.py?hl=en&answer=151657 for more info."
>> < Server: gws
>> < X-XSS-Protection: 1; mode=block
>> < X-Frame-Options: SAMEORIGIN
>> < Transfer-Encoding: chunked
>> < Proxy-Connection: Keep-Alive
>> < Connection: Keep-Alive
>> < Set-Cookie:
>> PREF=ID=9003536854dee7dc:FF=0:TM=1327269861:LM=1327269861:S=itmA28
>> PklgxOcuZI; expires=Tue, 21-Jan-2014 22:04:21 GMT; path=/;
>> domain=.google.com.ar
>> 
>> < Set-Cookie:
>> NID=56=lB4_bLrbrFvShtTIk-0X_qSQvirjPAFCzZ5wb0r1ryOXHKu8zsi2j6yvqp-
>> EoNgthPJlwCmXR3yndoG47bKC15nJX1HgPKaN5yl0lzb14FemGCNRNqbX_IXNIl8ZOQXE;
>> expires=M
>> on, 23-Jul-2012 22:04:21 GMT; path=/; domain=.google.com.ar; HttpOnly
> 
> ...
> 
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: httpclient-users-unsubscribe@hc.apache.org
> For additional commands, e-mail: httpclient-users-help@hc.apache.org
> 
> 
> 

-- 
View this message in context: http://old.nabble.com/Challenge-for-Basic-authentication-scheme-not-available-%28-%29-tp33184745p33196973.html
Sent from the HttpClient-User mailing list archive at Nabble.com.


---------------------------------------------------------------------
To unsubscribe, e-mail: httpclient-users-unsubscribe@hc.apache.org
For additional commands, e-mail: httpclient-users-help@hc.apache.org


Mime
View raw message