1
0
mirror of https://github.com/moparisthebest/curl synced 2024-11-10 11:35:07 -05:00
curl/lib/vauth
Jay Satiro af5fbb14bb digest_sspi: Handle 'stale=TRUE' directive in HTTP digest
- If the server has provided another challenge use it as the replacement
  input token if stale=TRUE. Otherwise previous credentials have failed
  so return CURLE_LOGIN_DENIED.

Prior to this change the stale directive was ignored and if another
challenge was received it would cause error CURLE_BAD_CONTENT_ENCODING.

Ref: https://tools.ietf.org/html/rfc2617#page-10

Bug: https://github.com/curl/curl/issues/928
Reported-by: tarek112@users.noreply.github.com
2017-02-21 01:04:59 -05:00
..
cleartext.c Limit ASN.1 structure sizes to 256K. Prevent some allocation size overflows. 2016-11-24 14:28:39 +01:00
cram.c internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
digest_sspi.c digest_sspi: Handle 'stale=TRUE' directive in HTTP digest 2017-02-21 01:04:59 -05:00
digest.c checksrc: white space edits to comply to stricter checksrc 2016-11-24 23:58:22 +01:00
digest.h URLs: change http to https in many places 2016-04-06 11:58:34 +02:00
krb5_gssapi.c vauth: Introduced Curl_auth_is_<mechansism>_supported() functions 2016-08-18 20:31:20 +01:00
krb5_sspi.c vauth: Added check for supported SSPI based authentication mechanisms 2016-08-21 10:27:09 +01:00
ntlm_sspi.c vauth: Added check for supported SSPI based authentication mechanisms 2016-08-21 10:27:09 +01:00
ntlm.c use *.sourceforge.io and misc URL updates 2017-02-06 19:21:05 +00:00
ntlm.h use *.sourceforge.io and misc URL updates 2017-02-06 19:21:05 +00:00
oauth2.c internals: rename the SessionHandle struct to Curl_easy 2016-06-22 10:28:41 +02:00
spnego_gssapi.c vauth: Introduced Curl_auth_is_<mechansism>_supported() functions 2016-08-18 20:31:20 +01:00
spnego_sspi.c checksrc: white space edits to comply to stricter checksrc 2016-11-24 23:58:22 +01:00
vauth.c sasl: Don't use GSSAPI authentication when domain name not specified 2016-08-21 11:56:23 +01:00
vauth.h sasl: Don't use GSSAPI authentication when domain name not specified 2016-08-21 11:56:23 +01:00