Apache/httpcomponents-client
1
0
Fork 0
mirror of https://github.com/apache/httpcomponents-client.git synced 2025-02-09 03:25:28 +00:00
Code Issues Packages Projects Releases Wiki Activity

Updated BASIC and DIGET preemptive authentication examples

Browse Source
This commit is contained in:
Oleg Kalnichevski 2018-10-05 16:42:19 +02:00
parent 0fb2060fcb
commit 678cc1bcb8
2 changed files with 25 additions and 21 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
httpclient5/src/examples/org/apache/hc/client5/http/examples/ClientPreemptiveBasicAuthentication.java
View File

@ -37,9 +37,9 @@
import org.apache.hc.core5.http.io.entity.EntityUtils; import org.apache.hc.core5.http.io.entity.EntityUtils;
/** /**
* An example of HttpClient can be customized to authenticate * An example of how HttpClient can be customized to authenticate
* preemptively using BASIC scheme. * preemptively using BASIC scheme.
* <b> * <b/>
* Generally, preemptive authentication can be considered less * Generally, preemptive authentication can be considered less
* secure than a response to an authentication challenge * secure than a response to an authentication challenge
* and therefore discouraged. * and therefore discouraged.

42
httpclient5/src/examples/org/apache/hc/client5/http/examples/ClientPreemptiveDigestAuthentication.java
View File

@ -26,10 +26,12 @@
*/ */
package org.apache.hc.client5.http.examples; package org.apache.hc.client5.http.examples;
import org.apache.hc.client5.http.auth.AuthCache; import org.apache.hc.client5.http.auth.AuthExchange;
import org.apache.hc.client5.http.auth.AuthScheme;
import org.apache.hc.client5.http.auth.AuthScope;
import org.apache.hc.client5.http.auth.UsernamePasswordCredentials; import org.apache.hc.client5.http.auth.UsernamePasswordCredentials;
import org.apache.hc.client5.http.classic.methods.HttpGet; import org.apache.hc.client5.http.classic.methods.HttpGet;
import org.apache.hc.client5.http.impl.auth.BasicAuthCache; import org.apache.hc.client5.http.impl.auth.BasicCredentialsProvider;
import org.apache.hc.client5.http.impl.auth.DigestScheme; import org.apache.hc.client5.http.impl.auth.DigestScheme;
import org.apache.hc.client5.http.impl.classic.CloseableHttpClient; import org.apache.hc.client5.http.impl.classic.CloseableHttpClient;
import org.apache.hc.client5.http.impl.classic.CloseableHttpResponse; import org.apache.hc.client5.http.impl.classic.CloseableHttpResponse;
@ -39,32 +41,24 @@
import org.apache.hc.core5.http.io.entity.EntityUtils; import org.apache.hc.core5.http.io.entity.EntityUtils;
/** /**
* An example of HttpClient can be customized to authenticate * An example of how HttpClient can authenticate multiple requests
* preemptively using DIGEST scheme. * using the same DIGEST scheme. After the initial request / response exchange
* <p> * all subsequent requests sharing the same execution context can re-use
* Generally, preemptive authentication can be considered less * the last DIGEST nonce value to authenticate with the server.
* secure than a response to an authentication challenge
* and therefore discouraged.
* </p>
*/ */
public class ClientPreemptiveDigestAuthentication { public class ClientPreemptiveDigestAuthentication {
public static void main(final String[] args) throws Exception { public static void main(final String[] args) throws Exception {
try (CloseableHttpClient httpclient = HttpClients.createDefault()) { try (CloseableHttpClient httpclient = HttpClients.createDefault()) {
// Create AuthCache instance
final AuthCache authCache = new BasicAuthCache();
// Generate DIGEST scheme object, initialize it and add it to the local auth cache
final DigestScheme digestAuth = new DigestScheme();
// Suppose we already know the realm name and the expected nonce value
digestAuth.initPreemptive(new UsernamePasswordCredentials("user", "passwd".toCharArray()), "whatever", "realm");
final HttpHost target = new HttpHost("httpbin.org", 80, "http"); final HttpHost target = new HttpHost("httpbin.org", 80, "http");
authCache.put(target, digestAuth);
// Add AuthCache to the execution context
final HttpClientContext localContext = HttpClientContext.create(); final HttpClientContext localContext = HttpClientContext.create();
localContext.setAuthCache(authCache); final BasicCredentialsProvider credentialsProvider = new BasicCredentialsProvider();
credentialsProvider.setCredentials(
new AuthScope(target),
new UsernamePasswordCredentials("user", "passwd".toCharArray()));
localContext.setCredentialsProvider(credentialsProvider);
final HttpGet httpget = new HttpGet("http://httpbin.org/digest-auth/auth/user/passwd"); final HttpGet httpget = new HttpGet("http://httpbin.org/digest-auth/auth/user/passwd");
@ -74,6 +68,16 @@ public static void main(final String[] args) throws Exception {
System.out.println("----------------------------------------"); System.out.println("----------------------------------------");
System.out.println(response.getCode() + " " + response.getReasonPhrase()); System.out.println(response.getCode() + " " + response.getReasonPhrase());
EntityUtils.consume(response.getEntity()); EntityUtils.consume(response.getEntity());
final AuthExchange authExchange = localContext.getAuthExchange(target);
if (authExchange != null) {
final AuthScheme authScheme = authExchange.getAuthScheme();
if (authScheme instanceof DigestScheme) {
DigestScheme digestScheme = (DigestScheme) authScheme;
System.out.println("Nonce: " + digestScheme.getNonce() +
"; count: " + digestScheme.getNounceCount());
}
}
} }
} }
} }