Class: Mechanize::HTTP::WWWAuthenticateParser

Inherits:

Object

• Object
• Mechanize::HTTP::WWWAuthenticateParser

Defined in:

lib/mechanize/http/www_authenticate_parser.rb

Overview

Parses the WWW-Authenticate HTTP header into separate challenges.

Instance Attribute Summary

• #scanner ⇒ Object

  :nodoc:.

Instance Method Summary

• #auth_param ⇒ Object

  auth-param = token “=” ( token | quoted-string ).

• #initialize ⇒ WWWAuthenticateParser constructor

  Creates a new header parser for WWW-Authenticate headers.

• #parse(www_authenticate) ⇒ Object

  Parsers the header.

• #quoted_string ⇒ Object

  quoted-string = ( <“> *(qdtext | quoted-pair ) <”> ) qdtext = <any TEXT except <“>> quoted-pair = ”" CHAR.

• #scan_comma_spaces ⇒ Object

  scans a comma followed by spaces needed for Negotiation, NTLM.

• #spaces ⇒ Object

  1*SP.

• #token ⇒ Object (also: #auth_scheme)

  token = 1*<any CHAR except CTLs or separators>.

Constructor Details

#initialize ⇒ WWWAuthenticateParser

Creates a new header parser for WWW-Authenticate headers

# File 'lib/mechanize/http/www_authenticate_parser.rb', line 15

def initialize
  @scanner = nil
end

Instance Attribute Details

#scanner ⇒ Object

:nodoc:

# File 'lib/mechanize/http/www_authenticate_parser.rb', line 10

def scanner
  @scanner
end

Instance Method Details

#auth_param ⇒ Object

auth-param = token “=” ( token | quoted-string )

Parses an auth parameter

# File 'lib/mechanize/http/www_authenticate_parser.rb', line 129

def auth_param
  return nil unless name = token
  return nil unless @scanner.scan(/ *= */)

  value = if @scanner.peek(1) == '"' then
            quoted_string
          else
            token
          end

  return nil unless value

  return name, value
end

#parse(www_authenticate) ⇒ Object

Parsers the header. Returns an Array of challenges as strings

# File 'lib/mechanize/http/www_authenticate_parser.rb', line 22

def parse www_authenticate
  challenges = []
  @scanner = StringScanner.new www_authenticate

  while true do
    break if @scanner.eos?
    start = @scanner.pos
    challenge = Mechanize::HTTP::AuthChallenge.new

    scheme = auth_scheme

    if scheme == 'Negotiate'
      scan_comma_spaces
    end

    break unless scheme
    challenge.scheme = scheme

    space = spaces

    if scheme == 'NTLM' then
      if space then
        challenge.params = @scanner.scan(/.*/)
      end

      challenge.raw = www_authenticate[start, @scanner.pos]
      challenges << challenge
      next
    else
      scheme.capitalize!
    end

    next unless space

    params = {}

    while true do
      pos = @scanner.pos
      name, value = auth_param

      name.downcase! if name =~ /^realm$/i

      unless name then
        challenge.params = params
        challenges << challenge

        if @scanner.eos? then
          challenge.raw = www_authenticate[start, @scanner.pos]
          break
        end

        @scanner.pos = pos # rewind
        challenge.raw = www_authenticate[start, @scanner.pos].sub(/(,+)? *$/, '')
        challenge = nil # a token should be next, new challenge
        break
      else
        params[name] = value
      end

      spaces

      @scanner.scan(/(, *)+/)
    end
  end

  challenges
end

#quoted_string ⇒ Object

quoted-string = ( <“> *(qdtext | quoted-pair ) <”> )

qdtext        = <any TEXT except <">>
quoted-pair   = "\" CHAR

For TEXT, the rules of RFC 2047 are ignored.

# File 'lib/mechanize/http/www_authenticate_parser.rb', line 151

def quoted_string
  return nil unless @scanner.scan(/"/)

  text = String.new

  while true do
    chunk = @scanner.scan(/[\r\n \t\x21\x23-\x7e\u0080-\u00ff]+/) # not " which is \x22

    if chunk then
      text << chunk

      text << @scanner.get_byte if
        chunk.end_with? '\\' and '"' == @scanner.peek(1)
    else
      if '"' == @scanner.peek(1) then
        @scanner.get_byte
        break
      else
        return nil
      end
    end
  end

  text
end

#scan_comma_spaces ⇒ Object

scans a comma followed by spaces needed for Negotiation, NTLM

# File 'lib/mechanize/http/www_authenticate_parser.rb', line 104

def scan_comma_spaces
  @scanner.scan(/, +/)
end

#spaces ⇒ Object

1*SP

Parses spaces

# File 'lib/mechanize/http/www_authenticate_parser.rb', line 95

def spaces
  @scanner.scan(/ +/)
end

#token ⇒ Object Also known as: auth_scheme

token = 1*<any CHAR except CTLs or separators>

Parses a token

# File 'lib/mechanize/http/www_authenticate_parser.rb', line 113

def token
  @scanner.scan(/[^\000-\037\177()<>@,;:\\"\/\[\]?={} ]+/)
end