Method: Mechanize::HTTP::Agent#response_authenticate

Defined in:
lib/mechanize/http/agent.rb

#response_authenticate(response, page, uri, request, headers, params, referer) ⇒ Object

[View source]

803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
 
# File 'lib/mechanize/http/agent.rb', line 803

def response_authenticate(response, page, uri, request, headers, params,
                          referer)
  www_authenticate = response['www-authenticate']

  unless www_authenticate = response['www-authenticate'] then
    message = 'WWW-Authenticate header missing in response'
    raise Mechanize::UnauthorizedError.new(page, nil, message)
  end

  challenges = @authenticate_parser.parse www_authenticate

  unless @auth_store.credentials? uri, challenges then
    message = "no credentials found, provide some with #add_auth"
    raise Mechanize::UnauthorizedError.new(page, challenges, message)
  end

  if challenge = challenges.find { |c| c.scheme =~ /^Digest$/i } then
    realm = challenge.realm uri

    auth_scheme = if response['server'] =~ /Microsoft-IIS/ then
                    :iis_digest
                  else
                    :digest
                  end

    existing_realms = @authenticate_methods[realm.uri][auth_scheme]

    if existing_realms.include? realm
      message = 'Digest authentication failed'
      raise Mechanize::UnauthorizedError.new(page, challenges, message)
    end

    existing_realms << realm
    @digest_challenges[realm] = challenge
  elsif challenge = challenges.find { |c| c.scheme == 'NTLM' } then
    existing_realms = @authenticate_methods[uri + '/'][:ntlm]

    if existing_realms.include?(realm) and not challenge.params then
      message = 'NTLM authentication failed'
      raise Mechanize::UnauthorizedError.new(page, challenges, message)
    end

    existing_realms << realm

    if challenge.params then
      type_2 = Net::NTLM::Message.decode64 challenge.params

      user, password, domain = @auth_store.credentials_for uri, nil

      type_3 = type_2.response({ :user => user, :password => password,
                                 :domain => domain },
                               { :ntlmv2 => true }).encode64

      headers['Authorization'] = "NTLM #{type_3}"
    else
      type_1 = Net::NTLM::Message::Type1.new.encode64
      headers['Authorization'] = "NTLM #{type_1}"
    end
  elsif challenge = challenges.find { |c| c.scheme == 'Basic' } then
    realm = challenge.realm uri

    existing_realms = @authenticate_methods[realm.uri][:basic]

    if existing_realms.include? realm then
      message = 'Basic authentication failed'
      raise Mechanize::UnauthorizedError.new(page, challenges, message)
    end

    existing_realms << realm
  else
    message = 'unsupported authentication scheme'
    raise Mechanize::UnauthorizedError.new(page, challenges, message)
  end

  fetch uri, request.method.downcase.to_sym, headers, params, referer
end