Enable NTLM for non proxy access

Java GUI-Less browser, supporting JavaScript, to run against web pages

Brought to you by: asashour, bradclarke, mbowler, mguillem, and 2 others

#95 Enable NTLM for non proxy access

Status: closed

Owner: Marc Guillemot

Labels: Interface Improvements (example) (15)

Priority: 5

Updated: 2012-10-21

Created: 2006-04-18

Creator: Frank Nestel

Private: No

When I started to dig into HtmlUnit and wanted to test
a third source application, I realized, there is no
means to achieve NTLM-Authentication to an application,
only to a proxy. Whereas the underlying
org.apache.commons.HttpClient does NTLM. Therefore I
added a method

public void addCredentials(Credentials cred)
{
    credentials_.put( AuthScope.ANY, cred );
}

to the
com.gargoylesoftware.htmlunit.DefaultCredentialProvider.

You might consider this API "too open" or whatsoever,
but it allows HTMLUnit to use any Credential,
HTTPClient does, so you might want to include something
similar in a next HTMLUnit release. You probably want
to expose the "AuthScope" API of HTTPClient also HTMLUnit.

Cheers,
Frank

Discussion

Frank Nestel - 2006-04-18

(Micro) patched version of DefaultCredentialsProvider

DefaultCredentialsProvider.java

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Marc Guillemot - 2006-04-18

Logged In: YES
user_id=402164

Wouldn't it make more sense to add
public void addNTLCredentials( final String username,
final String password, final String host,
final int port, final String clientHost, final
String clientDomain )

This would better fit to the other methods of
DefaultCredentialProvider.

PS: please submit patches as patches
(http://htmlunit.sourceforge.net/submittingPatches.html) and
not as plain text

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Frank Nestel - 2006-04-18

Logged In: YES
user_id=392154

Hi,

the API must rather look like

public void addNTLCredentials( final String username,
final String password, final String clientHost, final
String clientDomain )

since those 4 arguments are the ones required to build an
corresponding NTLMCrendential in Apache HttpClient.

I wonder if it makes sense to add more and more special
purpose addCredentialXYZ Methods (with and without AuthScope
to multiply by 2). When there is a new authentication in
HttpClient 3.1, you are behind again. I'd suggest to rather
expose the HttpClient-API. Might be a matter of taste.

I'm sorry I didn't consider this little hack of mine a
true patch.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Marc Guillemot - 2006-04-18

Logged In: YES
user_id=402164

to 1: sure. I've copied from the NTLM proxy version and
forgotten to removed the unnecessary params

to 2: perhaps. In fact this could be a job for a second
time. I suppose that most of the time tests don't need to
specify special host rules and therefore the priority would
be now to make it working for something that seems to be
quite basic: a normal (not proxy) NTLM credential.

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Marc Guillemot - 2006-06-15

Logged In: YES
user_id=402164

Now implemented in CVS

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Log in to post a comment.