[jira] [Commented] (HTTPCLIENT-1107) HttpClient does not retry authentication when multiple challenges are present if the primary one fails

Ian Beaumont (Commented) (JIRA) Tue, 08 Nov 2011 05:06:23 -0800

    [ 
https://issues.apache.org/jira/browse/HTTPCLIENT-1107?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13146288#comment-13146288
 ]


Ian Beaumont commented on HTTPCLIENT-1107:
------------------------------------------

Here you go...(let me know if you need something different).

authSchemes[basic, digest, ntlm, negotiate]
[DEBUG] PoolingClientConnectionManager - Connection request: [route: 
{}->http://WIN2008-CAT][total kept alive: 0; route allocated: 0 of 2; total 
allocated: 0 of 20]
[DEBUG] PoolingClientConnectionManager - Connection leased: [id: 0][route: 
{}->http://WIN2008-CAT][total kept alive: 0; route allocated: 1 of 2; total 
allocated: 1 of 20]
[DEBUG] DefaultClientConnectionOperator - Connecting to WIN2008-CAT:80
[DEBUG] RequestAddCookies - CookieSpec selected: best-match
[DEBUG] RequestAuthCache - Auth cache not set in the context
[DEBUG] RequestTargetAuthentication - Target auth state: UNCHALLENGED
[DEBUG] RequestProxyAuthentication - Proxy auth state: UNCHALLENGED
[DEBUG] DefaultHttpClient - Attempt 1 to execute request
[DEBUG] DefaultClientConnection - Sending request: GET / HTTP/1.1
[DEBUG] wire - >> "GET / HTTP/1.1[\r][\n]"
[DEBUG] wire - >> "Host: WIN2008-CAT[\r][\n]"
[DEBUG] wire - >> "Connection: Keep-Alive[\r][\n]"
[DEBUG] wire - >> "User-Agent: Apache-HttpClient/4.2-alpha1 (java 1.5)[\r][\n]"
[DEBUG] wire - >> "[\r][\n]"
[DEBUG] headers - >> GET / HTTP/1.1
[DEBUG] headers - >> Host: WIN2008-CAT
[DEBUG] headers - >> Connection: Keep-Alive
[DEBUG] headers - >> User-Agent: Apache-HttpClient/4.2-alpha1 (java 1.5)
[DEBUG] wire - << "HTTP/1.1 401 Unauthorized[\r][\n]"
[DEBUG] wire - << "Content-Type: text/html[\r][\n]"
[DEBUG] wire - << "Server: Microsoft-IIS/7.0[\r][\n]"
[DEBUG] wire - << "WWW-Authenticate: Negotiate[\r][\n]"
[DEBUG] wire - << "WWW-Authenticate: NTLM[\r][\n]"
[DEBUG] wire - << "X-Powered-By: ASP.NET[\r][\n]"
[DEBUG] wire - << "Date: Tue, 08 Nov 2011 13:01:06 GMT[\r][\n]"
[DEBUG] wire - << "Content-Length: 1293[\r][\n]"
[DEBUG] wire - << "[\r][\n]"
[DEBUG] DefaultClientConnection - Receiving response: HTTP/1.1 401 Unauthorized
[DEBUG] headers - << HTTP/1.1 401 Unauthorized
[DEBUG] headers - << Content-Type: text/html
[DEBUG] headers - << Server: Microsoft-IIS/7.0
[DEBUG] headers - << WWW-Authenticate: Negotiate
[DEBUG] headers - << WWW-Authenticate: NTLM
[DEBUG] headers - << X-Powered-By: ASP.NET
[DEBUG] headers - << Date: Tue, 08 Nov 2011 13:01:06 GMT
[DEBUG] headers - << Content-Length: 1293
[DEBUG] DefaultHttpClient - Connection can be kept alive indefinitely
[DEBUG] DefaultHttpClient - WIN2008-CAT:80 requested authentication
[DEBUG] TargetAuthenticationStrategy - Authentication schemes in the order of 
preference: [negotiate, NTLM, Digest, Basic]
[DEBUG] NegotiateScheme - Received challenge '' from the auth server
[DEBUG] TargetAuthenticationStrategy - Challenge for Digest authentication 
scheme not available
[DEBUG] TargetAuthenticationStrategy - Challenge for Basic authentication 
scheme not available
[DEBUG] wire - << "<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" 
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd";>[\r][\n]"
[DEBUG] wire - << "<html xmlns="http://www.w3.org/1999/xhtml";>[\r][\n]"
[DEBUG] wire - << "<head>[\r][\n]"
[DEBUG] wire - << "<meta http-equiv="Content-Type" content="text/html; 
charset=iso-8859-1"/>[\r][\n]"
[DEBUG] wire - << "<title>401 - Unauthorized: Access is denied due to invalid 
credentials.</title>[\r][\n]"
[DEBUG] wire - << "<style type="text/css">[\r][\n]"
[DEBUG] wire - << "<!--[\r][\n]"
[DEBUG] wire - << "body{margin:0;font-size:.7em;font-family:Verdana, Arial, 
Helvetica, sans-serif;background:#EEEEEE;}[\r][\n]"
[DEBUG] wire - << "fieldset{padding:0 15px 10px 15px;} [\r][\n]"
[DEBUG] wire - << "h1{font-size:2.4em;margin:0;color:#FFF;}[\r][\n]"
[DEBUG] wire - << "h2{font-size:1.7em;margin:0;color:#CC0000;} [\r][\n]"
[DEBUG] wire - << "h3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} 
[\r][\n]"
[DEBUG] wire - << "#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 
2%;font-family:"trebuchet MS", Verdana, sans-serif;color:#FFF;[\r][\n]"
[DEBUG] wire - << "background-color:#555555;}[\r][\n]"
[DEBUG] wire - << "#content{margin:0 0 0 2%;position:relative;}[\r][\n]"
[DEBUG] wire - << 
".content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}[\r][\n]"
[DEBUG] wire - << "-->[\r][\n]"
[DEBUG] wire - << "</style>[\r][\n]"
[DEBUG] wire - << "</head>[\r][\n]"
[DEBUG] wire - << "<body>[\r][\n]"
[DEBUG] wire - << "<div id="header"><h1>Server Error</h1></div>[\r][\n]"
[DEBUG] wire - << "<div id="content">[\r][\n]"
[DEBUG] wire - << " <div class="content-container"><fieldset>[\r][\n]"
[DEBUG] wire - << "  <h2>401 - Unauthorized: Access is denied due to invalid 
credentials.</h2>[\r][\n]"
[DEBUG] wire - << "  <h3>You do not have permission to view this directory or 
page using the credentials that you supplied.</h3>[\r][\n]"
[DEBUG] wire - << " </fieldset></div>[\r][\n]"
[DEBUG] wire - << "</div>[\r][\n]"
[DEBUG] wire - << "</body>[\r][\n]"
[DEBUG] wire - << "</html>[\r][\n]"
[DEBUG] RequestAddCookies - CookieSpec selected: best-match
[DEBUG] RequestAuthCache - Auth cache not set in the context
[DEBUG] RequestTargetAuthentication - Target auth state: CHALLENGED
[DEBUG] RequestTargetAuthentication - Generating response to an authentication 
challenge using Negotiate scheme
[DEBUG] NegotiateScheme - init WIN2008-CAT
[WARN] RequestTargetAuthentication - NEGOTIATE authentication error: Invalid 
name provided (Mechanism level: Could not load configuration file 
C:\WINDOWS\krb5.ini (The system cannot find the file specified))
[DEBUG] RequestTargetAuthentication - Generating response to an authentication 
challenge using ntlm scheme
[DEBUG] RequestProxyAuthentication - Proxy auth state: UNCHALLENGED
[DEBUG] DefaultHttpClient - Attempt 2 to execute request
[DEBUG] DefaultClientConnection - Sending request: GET / HTTP/1.1
[DEBUG] wire - >> "GET / HTTP/1.1[\r][\n]"
[DEBUG] wire - >> "Host: WIN2008-CAT[\r][\n]"
[DEBUG] wire - >> "Connection: Keep-Alive[\r][\n]"
[DEBUG] wire - >> "User-Agent: Apache-HttpClient/4.2-alpha1 (java 1.5)[\r][\n]"
[DEBUG] wire - >> "Authorization: NTLM 
TlRMTVNTUAABAAAANQIIIAYABgA2AAAAFgAWACAAAABJAEEATgAtAEwAQQBQAFQATwBQADIAUwBXAEcA[\r][\n]"
[DEBUG] wire - >> "[\r][\n]"
[DEBUG] headers - >> GET / HTTP/1.1
[DEBUG] headers - >> Host: WIN2008-CAT
[DEBUG] headers - >> Connection: Keep-Alive
[DEBUG] headers - >> User-Agent: Apache-HttpClient/4.2-alpha1 (java 1.5)
[DEBUG] headers - >> Authorization: NTLM 
TlRMTVNTUAABAAAANQIIIAYABgA2AAAAFgAWACAAAABJAEEATgAtAEwAQQBQAFQATwBQADIAUwBXAEcA
[DEBUG] wire - << "HTTP/1.1 401 Unauthorized[\r][\n]"
[DEBUG] wire - << "Content-Type: text/html[\r][\n]"
[DEBUG] wire - << "Server: Microsoft-IIS/7.0[\r][\n]"
[DEBUG] wire - << "WWW-Authenticate: NTLM 
TlRMTVNTUAACAAAABgAGADgAAAA1Aoki96Eu6J7t1joAAAAAAAAAAJgAmAA+AAAABgByFwAAAA9TAFcARwACAAYAUwBXAEcAAQAWAFcASQBOADIAMAAwADgALQBDAEEAVAAEABgAUwBXAEcALgBDAEQAQwAuAFIATwBPAFQAAwAwAFcASQBOADIAMAAwADgALQBDAEEAVAAuAFMAVwBHAC4AQwBEAEMALgBSAE8ATwBUAAUAEABjAGQAYwAuAHIAbwBvAHQABwAIAOKwfHoWnswBAAAAAA==[\r][\n]"
[DEBUG] wire - << "WWW-Authenticate: Negotiate[\r][\n]"
[DEBUG] wire - << "X-Powered-By: ASP.NET[\r][\n]"
[DEBUG] wire - << "Date: Tue, 08 Nov 2011 13:01:06 GMT[\r][\n]"
[DEBUG] wire - << "Content-Length: 1293[\r][\n]"
[DEBUG] wire - << "[\r][\n]"
[DEBUG] DefaultClientConnection - Receiving response: HTTP/1.1 401 Unauthorized
[DEBUG] headers - << HTTP/1.1 401 Unauthorized
[DEBUG] headers - << Content-Type: text/html
[DEBUG] headers - << Server: Microsoft-IIS/7.0
[DEBUG] headers - << WWW-Authenticate: NTLM 
TlRMTVNTUAACAAAABgAGADgAAAA1Aoki96Eu6J7t1joAAAAAAAAAAJgAmAA+AAAABgByFwAAAA9TAFcARwACAAYAUwBXAEcAAQAWAFcASQBOADIAMAAwADgALQBDAEEAVAAEABgAUwBXAEcALgBDAEQAQwAuAFIATwBPAFQAAwAwAFcASQBOADIAMAAwADgALQBDAEEAVAAuAFMAVwBHAC4AQwBEAEMALgBSAE8ATwBUAAUAEABjAGQAYwAuAHIAbwBvAHQABwAIAOKwfHoWnswBAAAAAA==
[DEBUG] headers - << WWW-Authenticate: Negotiate
[DEBUG] headers - << X-Powered-By: ASP.NET
[DEBUG] headers - << Date: Tue, 08 Nov 2011 13:01:06 GMT
[DEBUG] headers - << Content-Length: 1293
[DEBUG] DefaultHttpClient - Connection can be kept alive indefinitely
[DEBUG] DefaultHttpClient - WIN2008-CAT:80 requested authentication
[DEBUG] DefaultHttpClient - Authorization challenge processed
[DEBUG] wire - << "<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" 
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd";>[\r][\n]"
[DEBUG] wire - << "<html xmlns="http://www.w3.org/1999/xhtml";>[\r][\n]"
[DEBUG] wire - << "<head>[\r][\n]"
[DEBUG] wire - << "<meta http-equiv="Content-Type" content="text/html; 
charset=iso-8859-1"/>[\r][\n]"
[DEBUG] wire - << "<title>401 - Unauthorized: Access is denied due to invalid 
credentials.</title>[\r][\n]"
[DEBUG] wire - << "<style type="text/css">[\r][\n]"
[DEBUG] wire - << "<!--[\r][\n]"
[DEBUG] wire - << "body{margin:0;font-size:.7em;font-family:Verdana, Arial, 
Helvetica, sans-serif;background:#EEEEEE;}[\r][\n]"
[DEBUG] wire - << "fieldset{padding:0 15px 10px 15px;} [\r][\n]"
[DEBUG] wire - << "h1{font-size:2.4em;margin:0;color:#FFF;}[\r][\n]"
[DEBUG] wire - << "h2{font-size:1.7em;margin:0;color:#CC0000;} [\r][\n]"
[DEBUG] wire - << "h3{font-size:1.2em;margin:10px 0 0 0;color:#000000;} 
[\r][\n]"
[DEBUG] wire - << "#header{width:96%;margin:0 0 0 0;padding:6px 2% 6px 
2%;font-family:"trebuchet MS", Verdana, sans-serif;color:#FFF;[\r][\n]"
[DEBUG] wire - << "background-color:#555555;}[\r][\n]"
[DEBUG] wire - << "#content{margin:0 0 0 2%;position:relative;}[\r][\n]"
[DEBUG] wire - << 
".content-container{background:#FFF;width:96%;margin-top:8px;padding:10px;position:relative;}[\r][\n]"
[DEBUG] wire - << "-->[\r][\n]"
[DEBUG] wire - << "</style>[\r][\n]"
[DEBUG] wire - << "</head>[\r][\n]"
[DEBUG] wire - << "<body>[\r][\n]"
[DEBUG] wire - << "<div id="header"><h1>Server Error</h1></div>[\r][\n]"
[DEBUG] wire - << "<div id="content">[\r][\n]"
[DEBUG] wire - << " <div class="content-container"><fieldset>[\r][\n]"
[DEBUG] wire - << "  <h2>401 - Unauthorized: Access is denied due to invalid 
credentials.</h2>[\r][\n]"
[DEBUG] wire - << "  <h3>You do not have permission to view this directory or 
page using the credentials that you supplied.</h3>[\r][\n]"
[DEBUG] wire - << " </fieldset></div>[\r][\n]"
[DEBUG] wire - << "</div>[\r][\n]"
[DEBUG] wire - << "</body>[\r][\n]"
[DEBUG] wire - << "</html>[\r][\n]"
[DEBUG] RequestAddCookies - CookieSpec selected: best-match
[DEBUG] RequestAuthCache - Auth cache not set in the context
[DEBUG] RequestTargetAuthentication - Target auth state: HANDSHAKE
[DEBUG] RequestProxyAuthentication - Proxy auth state: UNCHALLENGED
[DEBUG] DefaultHttpClient - Attempt 3 to execute request
[DEBUG] DefaultClientConnection - Sending request: GET / HTTP/1.1
[DEBUG] wire - >> "GET / HTTP/1.1[\r][\n]"
[DEBUG] wire - >> "Host: WIN2008-CAT[\r][\n]"
[DEBUG] wire - >> "Connection: Keep-Alive[\r][\n]"
[DEBUG] wire - >> "User-Agent: Apache-HttpClient/4.2-alpha1 (java 1.5)[\r][\n]"
[DEBUG] wire - >> "Authorization: NTLM 
TlRMTVNTUAADAAAAGAAYAEAAAADEAMQAWAAAAAYABgAcAQAAEgASACIBAAAWABYANAEAAAAAAABKAQAANQIIIKG3pGkmvtI0sFFa6CS+/yvXTfdr4+0L7pYPHxK1BocwDzJXBXTd4mMBAQAAAAAAAMBXzaEWnswB1033a+PtC+4AAAAAAgAGAFMAVwBHAAEAFgBXAEkATgAyADAAMAA4AC0AQwBBAFQABAAYAFMAVwBHAC4AQwBEAEMALgBSAE8ATwBUAAMAMABXAEkATgAyADAAMAA4AC0AQwBBAFQALgBTAFcARwAuAEMARABDAC4AUgBPAE8AVAAFABAAYwBkAGMALgByAG8AbwB0AAcACADisHx6Fp7MAQAAAABTAFcARwBJAEIAZQBhAHUAbQBvAG4AdABJAEEATgAtAEwAQQBQAFQATwBQADIA[\r][\n]"
[DEBUG] wire - >> "[\r][\n]"
[DEBUG] headers - >> GET / HTTP/1.1
[DEBUG] headers - >> Host: WIN2008-CAT
[DEBUG] headers - >> Connection: Keep-Alive
[DEBUG] headers - >> User-Agent: Apache-HttpClient/4.2-alpha1 (java 1.5)
[DEBUG] headers - >> Authorization: NTLM 
TlRMTVNTUAADAAAAGAAYAEAAAADEAMQAWAAAAAYABgAcAQAAEgASACIBAAAWABYANAEAAAAAAABKAQAANQIIIKG3pGkmvtI0sFFa6CS+/yvXTfdr4+0L7pYPHxK1BocwDzJXBXTd4mMBAQAAAAAAAMBXzaEWnswB1033a+PtC+4AAAAAAgAGAFMAVwBHAAEAFgBXAEkATgAyADAAMAA4AC0AQwBBAFQABAAYAFMAVwBHAC4AQwBEAEMALgBSAE8ATwBUAAMAMABXAEkATgAyADAAMAA4AC0AQwBBAFQALgBTAFcARwAuAEMARABDAC4AUgBPAE8AVAAFABAAYwBkAGMALgByAG8AbwB0AAcACADisHx6Fp7MAQAAAABTAFcARwBJAEIAZQBhAHUAbQBvAG4AdABJAEEATgAtAEwAQQBQAFQATwBQADIA
[DEBUG] wire - << "HTTP/1.1 200 OK[\r][\n]"
[DEBUG] wire - << "Content-Type: text/html[\r][\n]"
[DEBUG] wire - << "Last-Modified: Thu, 17 Feb 2011 16:49:40 GMT[\r][\n]"
[DEBUG] wire - << "Accept-Ranges: bytes[\r][\n]"
[DEBUG] wire - << "ETag: "d9919dabc2cecb1:0"[\r][\n]"
[DEBUG] wire - << "Server: Microsoft-IIS/7.0[\r][\n]"
[DEBUG] wire - << "X-Powered-By: ASP.NET[\r][\n]"
[DEBUG] wire - << "Date: Tue, 08 Nov 2011 13:01:06 GMT[\r][\n]"
[DEBUG] wire - << "Content-Length: 689[\r][\n]"
[DEBUG] wire - << "[\r][\n]"
[DEBUG] DefaultClientConnection - Receiving response: HTTP/1.1 200 OK
[DEBUG] headers - << HTTP/1.1 200 OK
[DEBUG] headers - << Content-Type: text/html
[DEBUG] headers - << Last-Modified: Thu, 17 Feb 2011 16:49:40 GMT
[DEBUG] headers - << Accept-Ranges: bytes
[DEBUG] headers - << ETag: "d9919dabc2cecb1:0"
[DEBUG] headers - << Server: Microsoft-IIS/7.0
[DEBUG] headers - << X-Powered-By: ASP.NET
[DEBUG] headers - << Date: Tue, 08 Nov 2011 13:01:06 GMT
[DEBUG] headers - << Content-Length: 689
[DEBUG] DefaultHttpClient - Connection can be kept alive indefinitely
[DEBUG] wire - << "<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" 
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd";>[\r][\n]"
[DEBUG] wire - << "<html xmlns="http://www.w3.org/1999/xhtml";>[\r][\n]"
[DEBUG] wire - << "<head>[\r][\n]"
[DEBUG] wire - << "<meta http-equiv="Content-Type" content="text/html; 
charset=iso-8859-1" />[\r][\n]"
[DEBUG] wire - << "<title>IIS7</title>[\r][\n]"
[DEBUG] wire - << "<style type="text/css">[\r][\n]"
[DEBUG] wire - << "<!--[\r][\n]"
[DEBUG] wire - << "body {[\r][\n]"
[DEBUG] wire - << "[0x9]color:#000000;[\r][\n]"
[DEBUG] wire - << "[0x9]background-color:#B3B3B3;[\r][\n]"
[DEBUG] wire - << "[0x9]margin:0;[\r][\n]"
[DEBUG] wire - << "}[\r][\n]"
[DEBUG] wire - << "[\r][\n]"
[DEBUG] wire - << "#container {[\r][\n]"
[DEBUG] wire - << "[0x9]margin-left:auto;[\r][\n]"
[DEBUG] wire - << "[0x9]margin-right:auto;[\r][\n]"
[DEBUG] wire - << "[0x9]text-align:center;[\r][\n]"
[DEBUG] wire - << "[0x9]}[\r][\n]"
[DEBUG] wire - << "[\r][\n]"
[DEBUG] wire - << "a img {[\r][\n]"
[DEBUG] wire - << "[0x9]border:none;[\r][\n]"
[DEBUG] wire - << "}[\r][\n]"
[DEBUG] wire - << "[\r][\n]"
[DEBUG] wire - << "-->[\r][\n]"
[DEBUG] wire - << "</style>[\r][\n]"
[DEBUG] wire - << "</head>[\r][\n]"
[DEBUG] wire - << "<body>[\r][\n]"
[DEBUG] wire - << "<div id="container">[\r][\n]"
[DEBUG] wire - << "<a 
href="http://go.microsoft.com/fwlink/?linkid=66138&amp;clcid=0x409";><img 
src="welcome.png" alt="IIS7" width="571" height="411" /></a>[\r][\n]"
content:<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" 
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd";>
[DEBUG] wire - << "</div>[\r][\n]"
<html xmlns="http://www.w3.org/1999/xhtml";>
[DEBUG] wire - << "</body>[\r][\n]"
<head>
[DEBUG] wire - << "</html>"
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" />
<title>IIS7</title>
<style type="text/css">
<!--
body {
        color:#000000;
        background-color:#B3B3B3;
        margin:0;
}

[DEBUG] PoolingClientConnectionManager - Connection [id: 0][route: 
{}->http://WIN2008-CAT][state: XXX/YYYYYYYYYY] can be kept alive indefinitely
#container {
        margin-left:auto;
        margin-right:auto;
        text-align:center;
        }

a img {
        border:none;
}

[DEBUG] PoolingClientConnectionManager - Connection released: [id: 0][route: 
{}->http://WIN2008-CAT][state: XXX/YYYYYYYYYY][total kept alive: 1; route 
allocated: 1 of 2; total allocated: 1 of 20]
-->
</style>
</head>
<body>
<div id="container">
<a href="http://go.microsoft.com/fwlink/?linkid=66138&amp;clcid=0x409";><img 
src="welcome.png" alt="IIS7" width="571" height="411" /></a>
</div>
</body>
</html>


                
> HttpClient does not retry authentication when multiple challenges are present 
> if the primary one fails
> ------------------------------------------------------------------------------------------------------
>
>                 Key: HTTPCLIENT-1107
>                 URL: https://issues.apache.org/jira/browse/HTTPCLIENT-1107
>             Project: HttpComponents HttpClient
>          Issue Type: Bug
>          Components: HttpAuth
>    Affects Versions: 4.1.1
>         Environment: Windows XP, running against IIS 6 and IIS 7.5
>            Reporter: Ian Beaumont
>            Assignee: Oleg Kalnichevski
>              Labels: authentication, negotiate, ntlm
>             Fix For: 4.2 Alpha1
>
>
> I'm trying to request a page from IIS (6 and 7.5).  If the IIS is configured 
> with providers for "negotiate" and "ntlm" then the Negotiate authentication 
> is tried and fails, but it does not then try to use the NTLM authentication 
> which is what I require.  If I removed "negotiate" as a provider from IIS and 
> just use NTLM then all works well - but this is not a solution as I don't 
> have control of the web servers. 
> Output below...
> [DEBUG] SingleClientConnManager - Get connection for route 
> HttpRoute[{}->http://WIN-HNB91NNAB2G]
> [DEBUG] DefaultClientConnectionOperator - Connecting to 
> WIN-HNB91NNAB2G/147.183.80.134:80
> [DEBUG] RequestAddCookies - CookieSpec selected: best-match
> [DEBUG] DefaultHttpClient - Attempt 1 to execute request
> [DEBUG] DefaultClientConnection - Sending request: GET / HTTP/1.1
> [DEBUG] wire - >> "GET / HTTP/1.1[\r][\n]"
> [DEBUG] wire - >> "Host: WIN-HNB91NNAB2G[\r][\n]"
> [DEBUG] wire - >> "Connection: Keep-Alive[\r][\n]"
> [DEBUG] wire - >> "User-Agent: Apache-HttpClient/4.1 (java 1.5)[\r][\n]"
> [DEBUG] wire - >> "[\r][\n]"
> [DEBUG] headers - >> GET / HTTP/1.1
> [DEBUG] headers - >> Host: WIN-HNB91NNAB2G
> [DEBUG] headers - >> Connection: Keep-Alive
> [DEBUG] headers - >> User-Agent: Apache-HttpClient/4.1 (java 1.5)
> [DEBUG] wire - << "HTTP/1.1 401 Unauthorized[\r][\n]"
> [DEBUG] wire - << "Content-Type: text/html[\r][\n]"
> [DEBUG] wire - << "Server: Microsoft-IIS/7.5[\r][\n]"
> [DEBUG] wire - << "WWW-Authenticate: Negotiate[\r][\n]"
> [DEBUG] wire - << "WWW-Authenticate: NTLM[\r][\n]"
> [DEBUG] wire - << "Date: Fri, 15 Jul 2011 12:15:11 GMT[\r][\n]"
> [DEBUG] wire - << "Content-Length: 58[\r][\n]"
> [DEBUG] wire - << "[\r][\n]"
> [DEBUG] DefaultClientConnection - Receiving response: HTTP/1.1 401 
> Unauthorized
> [DEBUG] headers - << HTTP/1.1 401 Unauthorized
> [DEBUG] headers - << Content-Type: text/html
> [DEBUG] headers - << Server: Microsoft-IIS/7.5
> [DEBUG] headers - << WWW-Authenticate: Negotiate
> [DEBUG] headers - << WWW-Authenticate: NTLM
> [DEBUG] headers - << Date: Fri, 15 Jul 2011 12:15:11 GMT
> [DEBUG] headers - << Content-Length: 58
> [DEBUG] DefaultHttpClient - Connection can be kept alive indefinitely
> [DEBUG] DefaultHttpClient - Target requested authentication
> [DEBUG] DefaultTargetAuthenticationHandler - Authentication schemes in the 
> order of preference: [negotiate, NTLM, Digest, Basic]
> [DEBUG] DefaultTargetAuthenticationHandler - negotiate authentication scheme 
> selected
> [DEBUG] NegotiateScheme - Received challenge '' from the auth server
> [DEBUG] DefaultHttpClient - Authorization challenge processed
> [DEBUG] DefaultHttpClient - Authentication scope: NEGOTIATE <any 
> realm>@win-hnb91nnab2g:80
> [DEBUG] DefaultHttpClient - Found credentials
> [DEBUG] wire - << "You do not have permission to view this directory or page."
> [DEBUG] RequestAddCookies - CookieSpec selected: best-match
> [DEBUG] NegotiateScheme - init WIN-HNB91NNAB2G
> [ERROR] RequestTargetAuthentication - Authentication error: Invalid name 
> provided (Mechanism level: Could not load configuration file 
> C:\WINDOWS\krb5.ini (The system cannot find the file specified))
> [DEBUG] DefaultHttpClient - Attempt 2 to execute request
> [DEBUG] DefaultClientConnection - Sending request: GET / HTTP/1.1
> [DEBUG] wire - >> "GET / HTTP/1.1[\r][\n]"
> [DEBUG] wire - >> "Host: WIN-HNB91NNAB2G[\r][\n]"
> [DEBUG] wire - >> "Connection: Keep-Alive[\r][\n]"
> [DEBUG] wire - >> "User-Agent: Apache-HttpClient/4.1 (java 1.5)[\r][\n]"
> [DEBUG] wire - >> "[\r][\n]"
> [DEBUG] headers - >> GET / HTTP/1.1
> [DEBUG] headers - >> Host: WIN-HNB91NNAB2G
> [DEBUG] headers - >> Connection: Keep-Alive
> [DEBUG] headers - >> User-Agent: Apache-HttpClient/4.1 (java 1.5)
> [DEBUG] wire - << "HTTP/1.1 401 Unauthorized[\r][\n]"
> [DEBUG] wire - << "Content-Type: text/html[\r][\n]"
> [DEBUG] wire - << "Server: Microsoft-IIS/7.5[\r][\n]"
> [DEBUG] wire - << "WWW-Authenticate: Negotiate[\r][\n]"
> [DEBUG] wire - << "WWW-Authenticate: NTLM[\r][\n]"
> [DEBUG] wire - << "Date: Fri, 15 Jul 2011 12:15:11 GMT[\r][\n]"
> [DEBUG] wire - << "Content-Length: 58[\r][\n]"
> [DEBUG] wire - << "[\r][\n]"
> [DEBUG] DefaultClientConnection - Receiving response: HTTP/1.1 401 
> Unauthorized
> [DEBUG] headers - << HTTP/1.1 401 Unauthorized
> [DEBUG] headers - << Content-Type: text/html
> [DEBUG] headers - << Server: Microsoft-IIS/7.5
> [DEBUG] headers - << WWW-Authenticate: Negotiate
> [DEBUG] headers - << WWW-Authenticate: NTLM
> [DEBUG] headers - << Date: Fri, 15 Jul 2011 12:15:11 GMT
> [DEBUG] headers - << Content-Length: 58
> [DEBUG] DefaultHttpClient - Connection can be kept alive indefinitely
> [DEBUG] DefaultHttpClient - Target requested authentication
> [DEBUG] NegotiateScheme - Received challenge '' from the auth server
> [DEBUG] NegotiateScheme - Authentication already attempted
> [DEBUG] DefaultHttpClient - Authorization challenge processed
> [DEBUG] DefaultHttpClient - Authentication scope: NEGOTIATE <any 
> realm>@win-hnb91nnab2g:80
> [DEBUG] DefaultHttpClient - Authentication failed
> [DEBUG] wire - << "You do not have permission to view this directory or page."
> content:You do not have permission to view this directory or page.
> [DEBUG] SingleClientConnManager - Releasing connection 
> org.apache.http.impl.conn.SingleClientConnManager$ConnAdapter@17fa65e

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: 
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Commented] (HTTPCLIENT-1107) HttpClient does not retry authentication when multiple challenges are present if the primary one fails

Reply via email to