aboutsummaryrefslogtreecommitdiff
path: root/lib/http.c
AgeCommit message (Collapse)Author
2004-01-22use curl_off_t instead of off_t!Daniel Stenberg
2004-01-09added one assert and a few comments describing how the auth stuff worksDaniel Stenberg
2004-01-07updated year in the copyright stringDaniel Stenberg
2004-01-05David J Meyer's large file support.Daniel Stenberg
2003-11-25When basic is the only auth wanted (which it is by default), the auth phaseDaniel Stenberg
is always considered done immediately as Basic needs to extra passes. This fix corrects bug report #848371.
2003-11-24allow the end-of-headers from a proxy response to CONNECT end with a CRCRDaniel Stenberg
as well as a CRLF
2003-11-24FTPS support added as RFC2228 and the murray-ftp-auth-ssl draft describe itDaniel Stenberg
2003-11-20bail out properly on a 407 when we can't authenticate basic, bug reportDaniel Stenberg
#845247
2003-10-31gmtime() really can't even return NULL, can it?Daniel Stenberg
2003-10-24Improved checks for bad memory situations and proper behaviour when weDaniel Stenberg
run out of memory.
2003-10-21conn->user and conn->passwd will now always be set to point to something.Daniel Stenberg
If not user or password is set, they will point to a "" string.
2003-10-20allow no user and password for proxy too, BasicDaniel Stenberg
2003-10-20allow no user and no passwd when doing basic authDaniel Stenberg
2003-10-18builds warning-free with -Wshadow nowDaniel Stenberg
2003-10-18compiler warning fixDaniel Stenberg
2003-10-17make empty names look fine in verbose outputDaniel Stenberg
2003-10-17show info text (verbose) about auth type and user name in useDaniel Stenberg
2003-10-14Gisle Vanem's IPv6-on-Windows patch applied!Daniel Stenberg
2003-10-07make sure that a regular POST using the read callback worksDaniel Stenberg
2003-10-04Vincent Bronner pointed out that if you set CURLOPT_COOKIE to NULL, it stillDaniel Stenberg
sends off the previously set cookie. This also concerns CURLOPT_REFERER. This fix should stop this.
2003-09-19Markus Moeller's SPNEGO patch applied, with my edits, additions and minorDaniel Stenberg
cleanups.
2003-09-15When we issue a HTTP request, first make sure if the authentication phaseDaniel Stenberg
is over or not, as if it isn't we shall not begin any PUT or POST operation. This cures bug report #805853, and test case 88 verifies it!
2003-09-11Tim Bartley's patch that makes the GSSNEGOTIATE option work for Microsoft'sDaniel Stenberg
"Negotiate" authentication as well.
2003-09-04ah, this change broke multiple test casesDaniel Stenberg
2003-09-04Jörg pointed out that I did this fix wrongly, now authwant is clearedDaniel Stenberg
properly if no auth is available
2003-09-04Based on Joerg Mueller-Tolk's patch, this introduces support forDaniel Stenberg
CURLINFO_HTTPAUTH_AVAIL and CURLINFO_PROXYAUTH_AVAIL
2003-09-041. store the httpproxycode in the loop after it is parsedDaniel Stenberg
2. made Curl_http_auth_act() reset 'authavail' unconditionally
2003-09-04avoid proxy (and other) auth if no user+password is givenDaniel Stenberg
2003-09-03Re-arranged code to make the proxy-CONNECT loop able to do some of theDaniel Stenberg
authentication negotiations needed for NTLM, Digest etc.
2003-08-12Bugfix from Serge Semashko that fixes a bug introduced when we applied hisDaniel Stenberg
NTLM patch. Test case 84 and 85 verify this.
2003-08-11Added support for CURLINFO_HTTP_CONNECTCODEDaniel Stenberg
2003-08-11Serge Semashko added CURLOPT_PROXYAUTH support, and now NTLM for proxiesDaniel Stenberg
work.
2003-08-11support sending off cookies without contentsDaniel Stenberg
2003-08-06include "share.h" for the cookie sharingDaniel Stenberg
2003-08-04Dirk Manske's patch that introduces cookie support to the share interface.Daniel Stenberg
2003-08-02When proxy authentication is used in a CONNECT request (as used for all SSLDaniel Stenberg
connects and otherwise enforced tunnel-thru-proxy requests), the same authentication header is also wrongly sent to the remote host. The name and password can then be captured by an evil host and possibly get used for malicious purposes.
2003-07-28clear http->send_buffer when we have freed the memory it pointed toDaniel Stenberg
2003-07-25Removed #include <sys/resource.h>, as pointed out by Henry Bland we don'tDaniel Stenberg
need it.
2003-07-21moved the proxyuser and proxypasswd fields from the sessionhandle to theDaniel Stenberg
connectdata to work as expected
2003-07-19Access the user and passwd fields from the connectdata struct now insteadDaniel Stenberg
of the sessionhandle struct, as that was not good.
2003-07-04Peter Sylvester's patch was applied that introduces the following:Daniel Stenberg
CURLOPT_SSL_CTX_FUNCTION to set a callback that gets called with the OpenSSL's ssl_ctx pointer passed in and allow a callback to act on it. If anything but CURLE_OK is returned, that will also be returned by libcurl all the way back. If this function changes the CURLOPT_URL, libcurl will detect this and instead go use the new URL. CURLOPT_SSL_CTX_DATA is a pointer you set to get passed to the callback set with CURLOPT_SSL_CTX_FUNCTION.
2003-06-26major adjustments to the new authentication supportDaniel Stenberg
2003-06-12CURLHTTP* renamed to CURLAUTH* and NEGOTIATE is now GSSNEGOTIATE as there'sDaniel Stenberg
a "plain" Negotiate as well.
2003-06-11Initial take at NTLM authentication. It doesn't really work at this pointDaniel Stenberg
but the infrastructure is there.
2003-06-10Daniel Kouril's patch that adds HTTP negotiation support to libcurl wasDaniel Stenberg
added.
2003-06-06When doing very big GET requests over HTTPS, we need to add some extraDaniel Stenberg
funky logic in order to make re-tries work fine with OpenSSL. This corrects the problem David Orrell noticed.
2003-05-28Posting static data using POST and chunked encoded now also appends theDaniel Stenberg
data to the initial request buffer, if the total post data is less than 100K.
2003-05-27Rudy Koento experienced problems with curl's recent habit of POSTing data inDaniel Stenberg
two separate send() calls, first the headers and then the data. I've now made a fix that for static and known content that isn't to be chunked-encoded, everything is now sent in one single system call again. This is also better for network performance reasons.
2003-05-27Another socks5-fix. Make sure that when we use a socks-proxy, it is not theDaniel Stenberg
same as using a httpproxy so we must make sure to better check for http proxies before we do HTTP proxy stuff. This included authorization and URI usage in the request etc.
2003-05-22warning-free is betterDaniel Stenberg