[jira] [Updated] (HTTPCLIENT-1266) Flag issues in NTLM implementation prevent authentication on some servers

Wed, 05 Dec 2012 00:33:05 -0800 

     [ 
https://issues.apache.org/jira/browse/HTTPCLIENT-1266?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Karl Wright updated HTTPCLIENT-1266:
------------------------------------

    Attachment: HTTPCLIENT-1266.patch

Trunk-based patch, for safe keeping.  Still in the process of confirming that 
it works on real-world Windows systems; will update if needed.

Anyone who tries this patch, and has it fail, and where https is not involved, 
should send a packet capture to [email protected] .  I will guarantee 
confidentiality.
                
> Flag issues in NTLM implementation prevent authentication on some servers
> -------------------------------------------------------------------------
>
>                 Key: HTTPCLIENT-1266
>                 URL: https://issues.apache.org/jira/browse/HTTPCLIENT-1266
>             Project: HttpComponents HttpClient
>          Issue Type: Bug
>          Components: HttpAuth
>    Affects Versions: 4.2.2
>            Reporter: Karl Wright
>             Fix For: Future
>
>         Attachments: HTTPCLIENT-1266.patch
>
>
> At the ManifoldCF project, we've recently encountered two SharePoint servers 
> (Windows 2008 Server R2) which seem to be configured in a way that the 
> connector cannot authenticate with them using httpcomponents NTLM.  It's 
> worth noting that cURL succeeds, so the NTLM setup is apparently reasonable.  
> Furthermore, the mcf patched version of commons-httpclient also fails in 
> exactly the same way, so it looks like a long-standing issue.
> Working through the problem, it appears that the NTLM flags httpclient sends 
> are, in some cases, inconsistent with the data we include.  I am working on a 
> httpclient patch, which I hope to be able to exercise in one of the client 
> situations within the next week or two.
> Please see CONNECTORS-572 for details and research results.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to