| // Copyright (c) 2010 The Chromium Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #include "net/http/http_auth_handler_basic.h" |
| |
| #include <string> |
| |
| #include "base/base64.h" |
| #include "base/string_util.h" |
| #include "base/utf_string_conversions.h" |
| #include "net/base/net_errors.h" |
| #include "net/http/http_auth.h" |
| |
| namespace net { |
| |
| // Note that if a realm was not specified, we will default it to ""; |
| // so specifying 'Basic realm=""' is equivalent to 'Basic'. |
| // |
| // This is more generous than RFC 2617, which is pretty clear in the |
| // production of challenge that realm is required. |
| // |
| // We allow it to be compatibility with certain embedded webservers that don't |
| // include a realm (see http://crbug.com/20984.) |
| bool HttpAuthHandlerBasic::Init(HttpAuth::ChallengeTokenizer* challenge) { |
| auth_scheme_ = HttpAuth::AUTH_SCHEME_BASIC; |
| score_ = 1; |
| properties_ = 0; |
| return ParseChallenge(challenge); |
| } |
| |
| bool HttpAuthHandlerBasic::ParseChallenge( |
| HttpAuth::ChallengeTokenizer* challenge) { |
| // Verify the challenge's auth-scheme. |
| if (!LowerCaseEqualsASCII(challenge->scheme(), "basic")) |
| return false; |
| |
| HttpUtil::NameValuePairsIterator parameters = challenge->param_pairs(); |
| |
| // Extract the realm (may be missing). |
| std::string realm; |
| while (parameters.GetNext()) { |
| if (LowerCaseEqualsASCII(parameters.name(), "realm")) |
| realm = parameters.value(); |
| } |
| |
| if (!parameters.valid()) |
| return false; |
| |
| realm_ = realm; |
| return true; |
| } |
| |
| HttpAuth::AuthorizationResult HttpAuthHandlerBasic::HandleAnotherChallenge( |
| HttpAuth::ChallengeTokenizer* challenge) { |
| // Basic authentication is always a single round, so any responses |
| // should be treated as a rejection. However, if the new challenge |
| // is for a different realm, then indicate the realm change. |
| HttpUtil::NameValuePairsIterator parameters = challenge->param_pairs(); |
| std::string realm; |
| while (parameters.GetNext()) { |
| if (LowerCaseEqualsASCII(parameters.name(), "realm")) |
| realm = parameters.value(); |
| } |
| return (realm_ != realm)? |
| HttpAuth::AUTHORIZATION_RESULT_DIFFERENT_REALM: |
| HttpAuth::AUTHORIZATION_RESULT_REJECT; |
| } |
| |
| int HttpAuthHandlerBasic::GenerateAuthTokenImpl( |
| const string16* username, |
| const string16* password, |
| const HttpRequestInfo*, |
| CompletionCallback*, |
| std::string* auth_token) { |
| // TODO(eroman): is this the right encoding of username/password? |
| std::string base64_username_password; |
| if (!base::Base64Encode(UTF16ToUTF8(*username) + ":" + UTF16ToUTF8(*password), |
| &base64_username_password)) { |
| LOG(ERROR) << "Unexpected problem Base64 encoding."; |
| return ERR_UNEXPECTED; |
| } |
| *auth_token = "Basic " + base64_username_password; |
| return OK; |
| } |
| |
| HttpAuthHandlerBasic::Factory::Factory() { |
| } |
| |
| HttpAuthHandlerBasic::Factory::~Factory() { |
| } |
| |
| int HttpAuthHandlerBasic::Factory::CreateAuthHandler( |
| HttpAuth::ChallengeTokenizer* challenge, |
| HttpAuth::Target target, |
| const GURL& origin, |
| CreateReason reason, |
| int digest_nonce_count, |
| const BoundNetLog& net_log, |
| scoped_ptr<HttpAuthHandler>* handler) { |
| // TODO(cbentzel): Move towards model of parsing in the factory |
| // method and only constructing when valid. |
| scoped_ptr<HttpAuthHandler> tmp_handler(new HttpAuthHandlerBasic()); |
| if (!tmp_handler->InitFromChallenge(challenge, target, origin, net_log)) |
| return ERR_INVALID_RESPONSE; |
| handler->swap(tmp_handler); |
| return OK; |
| } |
| |
| } // namespace net |
