From 552f0205e6901889a965fe679f4afeeeed7f4955 Mon Sep 17 00:00:00 2001 From: Jay Satiro Date: Sun, 9 Dec 2018 19:34:47 -0500 Subject: http: fix HTTP auth to include query in URI - Include query in the path passed to generate HTTP auth. Recent changes to use the URL API internally (46e1640, 7.62.0) inadvertently broke authentication URIs by omitting the query. Fixes https://github.com/curl/curl/issues/3353 Closes #3356 --- tests/data/test2076 | 75 +++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 75 insertions(+) create mode 100644 tests/data/test2076 (limited to 'tests/data/test2076') diff --git a/tests/data/test2076 b/tests/data/test2076 new file mode 100644 index 000000000..2c477b1a5 --- /dev/null +++ b/tests/data/test2076 @@ -0,0 +1,75 @@ + + + +HTTP +HTTP GET +HTTP Digest auth + + +# Server-side + + +HTTP/1.1 401 Authorization Required swsclose +WWW-Authenticate: Digest realm="testrealm", nonce="1" +Content-Length: 26 + +This is not the real page + + +# This is supposed to be returned when the server gets a +# Authorization: Digest line passed-in from the client + +HTTP/1.1 200 OK swsclose +Content-Length: 23 + +This IS the real page! + + + +HTTP/1.1 401 Authorization Required swsclose +WWW-Authenticate: Digest realm="testrealm", nonce="1" +Content-Length: 26 + +HTTP/1.1 200 OK swsclose +Content-Length: 23 + +This IS the real page! + + + + +# Client-side + + +http + + +!SSPI +crypto + + +HTTP with digest auth and URI contains query + + +"http://%HOSTIP:%HTTPPORT/2076?query" -u testuser:testpass --digest + + + +# Verify data after the test has been "shot" + + +^User-Agent:.* + + +GET /2076?query HTTP/1.1 +Host: %HOSTIP:%HTTPPORT +Accept: */* + +GET /2076?query HTTP/1.1 +Host: %HOSTIP:%HTTPPORT +Authorization: Digest username="testuser", realm="testrealm", nonce="1", uri="/2076?query", response="5758bd3bbde7f33236e6ccd278eb59af" +Accept: */* + + + + -- cgit v1.2.3