Add rudimentary support for an authentication callback function.

author: des <des@FreeBSD.org> 2001-05-26 19:37:15 +0000
committer: des <des@FreeBSD.org> 2001-05-26 19:37:15 +0000
commit: 4f0b3412631a0bb351436f8e864770c93ee8bdaa (patch)
tree: 45383a280be7a49c45a9398fdd6c445a08024420 /lib/libfetch/http.c
parent: 4edf66ad45433dfe5f2ebdca625183c9481390f2 (diff)
download: FreeBSD-src-4f0b3412631a0bb351436f8e864770c93ee8bdaa.zip
FreeBSD-src-4f0b3412631a0bb351436f8e864770c93ee8bdaa.tar.gz
1 files changed, 40 insertions, 16 deletions
diff --git a/lib/libfetch/http.c b/lib/libfetch/http.c
index b1332b3..77c3a2d 100644
--- a/lib/libfetch/http.c
+++ b/lib/libfetch/http.c
@@ -294,7 +294,8 @@ typedef enum {
     hdr_content_range,
     hdr_last_modified,
     hdr_location,
-    hdr_transfer_encoding
+    hdr_transfer_encoding,
+    hdr_www_authenticate
 } hdr;
 
 /* Names of interesting headers */
@@ -307,6 +308,7 @@ static struct {
     { hdr_last_modified,	"Last-Modified" },
     { hdr_location,		"Location" },
     { hdr_transfer_encoding,	"Transfer-Encoding" },
+    { hdr_www_authenticate,	"WWW-Authenticate" },
     { hdr_unknown,		NULL },
 };
 
@@ -564,6 +566,8 @@ _http_basic_auth(int fd, const char *hdr, const char *usr, const char *pwd)
     char *upw, *auth;
     int r;
 
+    DEBUG(fprintf(stderr, "usr: [\033[1m%s\033[m]\n", usr));
+    DEBUG(fprintf(stderr, "pwd: [\033[1m%s\033[m]\n", pwd));
     if (asprintf(&upw, "%s:%s", usr, pwd) == -1)
 	return -1;
     auth = _http_base64(upw);
@@ -705,16 +709,16 @@ _http_request(struct url *URL, const char *op, struct url_stat *us,
     n = noredirect ? 1 : MAX_REDIRECT;
     i = 0;
 
+    need_auth = 0;
     do {
 	new = NULL;
 	chunked = 0;
-	need_auth = 0;
 	offset = 0;
 	clength = -1;
 	length = -1;
 	size = -1;
 	mtime = 0;
-    retry:
+	
 	/* check port */
 	if (!url->port)
 	    url->port = _fetch_default_port(url->scheme);
@@ -743,6 +747,12 @@ _http_request(struct url *URL, const char *op, struct url_stat *us,
 		      op, url->doc);
 	}
 
+	/* virtual host */
+	if (url->port == _fetch_default_port(url->scheme))
+	    _http_cmd(fd, "Host: %s", host);
+	else
+	    _http_cmd(fd, "Host: %s:%d", host, url->port);
+	
 	/* proxy authorization */
 	if (purl) {
 	    if (*purl->user || *purl->pwd)
@@ -753,22 +763,20 @@ _http_request(struct url *URL, const char *op, struct url_stat *us,
 	}
 	
 	/* server authorization */
-	if (need_auth) {
+	if (need_auth || *url->user || *url->pwd) {
 	    if (*url->user || *url->pwd)
 		_http_basic_auth(fd, "Authorization", url->user, url->pwd);
 	    else if ((p = getenv("HTTP_AUTH")) != NULL && *p != '\0')
 		_http_authorize(fd, "Authorization", p);
-	    else {
+	    else if (fetchAuthMethod && fetchAuthMethod(url) == 0) {
+		_http_basic_auth(fd, "Authorization", url->user, url->pwd);
+	    } else {
 		_http_seterr(HTTP_NEED_AUTH);
 		goto ouch;
 	    }
 	}
 
 	/* other headers */
-	if (url->port == _fetch_default_port(url->scheme))
-	    _http_cmd(fd, "Host: %s", host);
-	else
-	    _http_cmd(fd, "Host: %s:%d", host, url->port);
 	_http_cmd(fd, "User-Agent: %s " _LIBFETCH_VER, __progname);
 	if (url->offset)
 	    _http_cmd(fd, "Range: bytes=%lld-", url->offset);
@@ -800,9 +808,7 @@ _http_request(struct url *URL, const char *op, struct url_stat *us,
 	    /* try again, but send the password this time */
 	    if (verbose)
 		_fetch_info("server requires authorization");
-	    need_auth = 1;
-	    close(fd);
-	    goto retry;
+	    break;
 	case HTTP_NEED_PROXY_AUTH:
 	    /*
 	     * If we're talking to a proxy, we already sent our proxy
@@ -867,6 +873,11 @@ _http_request(struct url *URL, const char *op, struct url_stat *us,
 		/* XXX weak test*/
 		chunked = (strcasecmp(p, "chunked") == 0);
 		break;
+	    case hdr_www_authenticate:
+		if (code != HTTP_NEED_AUTH)
+		    break;
+		/* if we were smarter, we'd check the method and realm */
+		break;
 	    case hdr_end:
 		/* fall through */
 	    case hdr_unknown:
@@ -875,19 +886,32 @@ _http_request(struct url *URL, const char *op, struct url_stat *us,
 	    }
 	} while (h > hdr_end);
 
-	/* we either have a hit, or a redirect with no Location: header */
-	if (code == HTTP_OK || code == HTTP_PARTIAL || !new)
+	/* we have a hit */
+	if (code == HTTP_OK || code == HTTP_PARTIAL)
 	    break;
 
-	/* we have a redirect */
+	/* we need to provide authentication */
+	if (code == HTTP_NEED_AUTH) {
+	    need_auth = 1;
+	    close(fd);
+	    fd = -1;
+	    continue;
+	}
+	
+	/* all other cases: we got a redirect */
+	need_auth = 0;
 	close(fd);
 	fd = -1;
+	if (!new) {
+	    DEBUG(fprintf(stderr, "redirect with no new location\n"));
+	    break;
+	}
 	if (url != URL)
 	    fetchFreeURL(url);
 	url = new;
     } while (++i < n);
 
-    /* no success */
+    /* we failed, or ran out of retries */
     if (fd == -1) {
 	_http_seterr(code);
 	goto ouch;
author	des <des@FreeBSD.org>	2001-05-26 19:37:15 +0000
committer	des <des@FreeBSD.org>	2001-05-26 19:37:15 +0000
commit	4f0b3412631a0bb351436f8e864770c93ee8bdaa (patch)
tree	45383a280be7a49c45a9398fdd6c445a08024420 /lib/libfetch/http.c
parent	4edf66ad45433dfe5f2ebdca625183c9481390f2 (diff)
download	FreeBSD-src-4f0b3412631a0bb351436f8e864770c93ee8bdaa.zip FreeBSD-src-4f0b3412631a0bb351436f8e864770c93ee8bdaa.tar.gz