sun.net.www.protocol.http: class: DigestAuthentication

sun.net.www.protocol.http
class: DigestAuthentication [javadoc | source]

java.lang.Object
   sun.net.www.protocol.http.AuthCacheValue
      sun.net.www.protocol.http.AuthenticationInfo
         sun.net.www.protocol.http.DigestAuthentication

All Implemented Interfaces:
Cloneable, java$io$Serializable

DigestAuthentication: Encapsulate an http server authentication using the "Digest" scheme, as described in RFC2069 and updated in RFC2617

author: Bill - Foote

Nested Class Summary:
static class	DigestAuthentication.Parameters

Field Summary
Parameters	params

Fields inherited from sun.net.www.protocol.http.AuthenticationInfo:
SERVER_AUTHENTICATION, PROXY_AUTHENTICATION, serializeAuth, pw, type, authScheme, protocol, host, port, realm, path, s1, s2

Fields inherited from sun.net.www.protocol.http.AuthCacheValue:
cache

Constructor:
public DigestAuthentication(boolean isProxy, URL url, String realm, String authMethod, PasswordAuthentication pw, Parameters params) { super(isProxy ? PROXY_AUTHENTICATION : SERVER_AUTHENTICATION, AuthScheme.DIGEST, url, realm); this.authMethod = authMethod; this.pw = pw; this.params = params; } Create a DigestAuthentication
public DigestAuthentication(boolean isProxy, String host, int port, String realm, String authMethod, PasswordAuthentication pw, Parameters params) { super(isProxy ? PROXY_AUTHENTICATION : SERVER_AUTHENTICATION, AuthScheme.DIGEST, host, port, realm); this.authMethod = authMethod; this.pw = pw; this.params = params; }

Constructor:

 public DigestAuthentication(boolean isProxy,
    URL url,
    String realm,
    String authMethod,
    PasswordAuthentication pw,
    Parameters params) {
        super(isProxy ? PROXY_AUTHENTICATION : SERVER_AUTHENTICATION,
              AuthScheme.DIGEST,
              url,
              realm);
        this.authMethod = authMethod;
        this.pw = pw;
        this.params = params;
}

Create a DigestAuthentication

 public DigestAuthentication(boolean isProxy,
    String host,
    int port,
    String realm,
    String authMethod,
    PasswordAuthentication pw,
    Parameters params) {
        super(isProxy ? PROXY_AUTHENTICATION : SERVER_AUTHENTICATION,
              AuthScheme.DIGEST,
              host,
              port,
              realm);
        this.authMethod = authMethod;
        this.pw = pw;
        this.params = params;
}

Method from sun.net.www.protocol.http.DigestAuthentication Summary:
checkResponse, checkResponse, getHeaderValue, getHeaderValue, isAuthorizationStale, setHeaders, supportsPreemptiveAuthorization

Methods from sun.net.www.protocol.http.AuthenticationInfo:
addToCache, cacheKey, clone, credentials, endAuthRequest, getAuth, getAuthScheme, getAuthType, getHeaderName, getHeaderValue, getHost, getPath, getPort, getProtocolScheme, getProxyAuth, getProxyAuth, getProxyAuthKey, getRealm, getServerAuth, getServerAuth, getServerAuthKey, isAuthorizationStale, reducePath, removeFromCache, setHeaders, supportsPreemptiveAuthorization

Methods from sun.net.www.protocol.http.AuthCacheValue:
credentials, getAuthScheme, getAuthType, getHost, getPath, getPort, getProtocolScheme, getRealm, setAuthCache

Methods from java.lang.Object:
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method from sun.net.www.protocol.http.DigestAuthentication Detail:
public void checkResponse(String header, String method, URL url) throws IOException { checkResponse (header, method, url.getFile()); }
public void checkResponse(String header, String method, String uri) throws IOException { char[] passwd = pw.getPassword(); String username = pw.getUserName(); boolean qop = params.authQop(); String opaque = params.getOpaque(); String cnonce = params.cnonce; String nonce = params.getNonce (); String algorithm = params.getAlgorithm (); int nccount = params.getNCCount (); String ncstring=null; if (header == null) { throw new ProtocolException ("No authentication information in response"); } if (nccount != -1) { ncstring = Integer.toHexString (nccount).toUpperCase(); int len = ncstring.length(); if (len < 8) ncstring = zeroPad [len] + ncstring; } try { String expected = computeDigest(false, username,passwd,realm, method, uri, nonce, cnonce, ncstring); HeaderParser p = new HeaderParser (header); String rspauth = p.findValue ("rspauth"); if (rspauth == null) { throw new ProtocolException ("No digest in response"); } if (!rspauth.equals (expected)) { throw new ProtocolException ("Response digest invalid"); } /* Check if there is a nextnonce field */ String nextnonce = p.findValue ("nextnonce"); if (nextnonce != null && ! "".equals(nextnonce)) { params.setNonce (nextnonce); } } catch (NoSuchAlgorithmException ex) { throw new ProtocolException ("Unsupported algorithm in response"); } }
public String getHeaderValue(URL url, String method) { return getHeaderValueImpl(url.getFile(), method); } Reclaculates the request-digest and returns it. Used in the common case where the requestURI is simply the abs_path.
String getHeaderValue(String requestURI, String method) { return getHeaderValueImpl(requestURI, method); } Reclaculates the request-digest and returns it. Used when the requestURI is not the abs_path. The exact requestURI can be passed as a String.
public boolean isAuthorizationStale(String header) { HeaderParser p = new HeaderParser (header); String s = p.findValue ("stale"); if (s == null \|\| !s.equals("true")) return false; String newNonce = p.findValue ("nonce"); if (newNonce == null \|\| "".equals(newNonce)) { return false; } params.setNonce (newNonce); return true; } Check if the header indicates that the current auth. parameters are stale. If so, then replace the relevant field with the new value and return true. Otherwise return false. returning true means the request can be retried with the same userid/password returning false means we have to go back to the user to ask for a new username password.
public boolean setHeaders(HttpURLConnection conn, HeaderParser p, String raw) { params.setNonce (p.findValue("nonce")); params.setOpaque (p.findValue("opaque")); params.setQop (p.findValue("qop")); String uri=""; String method; if (type == PROXY_AUTHENTICATION && conn.tunnelState() == HttpURLConnection.TunnelState.SETUP) { uri = HttpURLConnection.connectRequestURI(conn.getURL()); method = HTTP_CONNECT; } else { try { uri = conn.getRequestURI(); } catch (IOException e) {} method = conn.getMethod(); } if (params.nonce == null \|\| authMethod == null \|\| pw == null \|\| realm == null) { return false; } if (authMethod.length() >= 1) { // Method seems to get converted to all lower case elsewhere. // It really does need to start with an upper case letter // here. authMethod = Character.toUpperCase(authMethod.charAt(0)) + authMethod.substring(1).toLowerCase(); } String algorithm = p.findValue("algorithm"); if (algorithm == null \|\| "".equals(algorithm)) { algorithm = "MD5"; // The default, accoriding to rfc2069 } params.setAlgorithm (algorithm); // If authQop is true, then the server is doing RFC2617 and // has offered qop=auth. We do not support any other modes // and if auth is not offered we fallback to the RFC2069 behavior if (params.authQop()) { params.setNewCnonce(); } String value = getHeaderValueImpl (uri, method); if (value != null) { conn.setAuthenticationProperty(getHeaderName(), value); return true; } else { return false; } } Set header(s) on the given connection.
public boolean supportsPreemptiveAuthorization() { return true; }