• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1<testcase>
2<info>
3<keywords>
4HTTP
5HTTP GET
6HTTP Digest auth
7</keywords>
8</info>
9# Server-side
10<reply>
11<data>
12HTTP/1.1 401 Authorization Required
13Server: Apache/1.3.27 (Darwin) PHP/4.1.2
14WWW-Authenticate: Digest realm="testrealm", nonce="2053604145", algorithm="SHA-512-256", userhash=true
15Content-Type: text/html; charset=iso-8859-1
16Content-Length: 26
17
18This is not the real page
19</data>
20
21# This is supposed to be returned when the server gets a
22# Authorization: Digest line passed-in from the client
23<data1000>
24HTTP/1.1 401 Still a bad password you moron
25Server: Apache/1.3.27 (Darwin) PHP/4.1.2
26Content-Type: text/html; charset=iso-8859-1
27Content-Length: 34
28
29This is not the real page either
30</data1000>
31
32<datacheck>
33HTTP/1.1 401 Authorization Required
34Server: Apache/1.3.27 (Darwin) PHP/4.1.2
35WWW-Authenticate: Digest realm="testrealm", nonce="2053604145", algorithm="SHA-512-256", userhash=true
36Content-Type: text/html; charset=iso-8859-1
37Content-Length: 26
38
39HTTP/1.1 401 Still a bad password you moron
40Server: Apache/1.3.27 (Darwin) PHP/4.1.2
41Content-Type: text/html; charset=iso-8859-1
42Content-Length: 34
43
44This is not the real page either
45</datacheck>
46
47</reply>
48
49# Client-side
50<client>
51<server>
52http
53</server>
54<features>
55!SSPI
56crypto
57</features>
58 <name>
59HTTP with RFC7616 Digest authorization with bad password, SHA-512-256 and userhash=true
60 </name>
61 <command>
62http://%HOSTIP:%HTTPPORT/2066 -u testuser:test2pass --digest
63</command>
64</client>
65
66# Verify data after the test has been "shot"
67<verify>
68<strip>
69^User-Agent:.*
70</strip>
71<protocol>
72GET /2066 HTTP/1.1
73Host: %HOSTIP:%HTTPPORT
74Accept: */*
75
76GET /2066 HTTP/1.1
77Host: %HOSTIP:%HTTPPORT
78Authorization: Digest username="75af8a3500f771e58a52093a25e7905d6e428a511285c12ea1420c73078dfd61", realm="testrealm", nonce="2053604145", uri="/2066", response="a2e2ae589f575fb132991d6f550ef14bf7ef697d2fef1242d2498f07eafc77dc", algorithm="SHA-512-256", userhash=true
79User-Agent: curl/7.10.5 (i686-pc-linux-gnu) libcurl/7.10.5 OpenSSL/0.9.7a ipv6 zlib/1.1.3
80Accept: */*
81
82</protocol>
83</verify>
84</testcase>
85