mirror of
https://github.com/moparisthebest/curl
synced 2024-11-14 05:25:06 -05:00
af32cd3859
... unless CURLOPT_UNRESTRICTED_AUTH is set to allow them. This matches how curl already handles Authorization headers created internally. Note: this changes behavior slightly, for the sake of reducing mistakes. Added test 317 and 318 to verify. Reported-by: Craig de Stigter Bug: https://curl.haxx.se/docs/adv_2018-b3bf.html
95 lines
1.7 KiB
Plaintext
95 lines
1.7 KiB
Plaintext
<testcase>
|
|
<info>
|
|
<keywords>
|
|
HTTP
|
|
HTTP proxy
|
|
HTTP Basic auth
|
|
HTTP proxy Basic auth
|
|
followlocation
|
|
</keywords>
|
|
</info>
|
|
#
|
|
# Server-side
|
|
<reply>
|
|
<data>
|
|
HTTP/1.1 302 OK
|
|
Date: Thu, 09 Nov 2010 14:49:00 GMT
|
|
Server: test-server/fake swsclose
|
|
Content-Type: text/html
|
|
Funny-head: yesyes
|
|
Location: http://goto.second.host.now/3170002
|
|
Content-Length: 8
|
|
Connection: close
|
|
|
|
contents
|
|
</data>
|
|
<data2>
|
|
HTTP/1.1 200 OK
|
|
Date: Thu, 09 Nov 2010 14:49:00 GMT
|
|
Server: test-server/fake swsclose
|
|
Content-Type: text/html
|
|
Funny-head: yesyes
|
|
Content-Length: 9
|
|
|
|
contents
|
|
</data2>
|
|
|
|
<datacheck>
|
|
HTTP/1.1 302 OK
|
|
Date: Thu, 09 Nov 2010 14:49:00 GMT
|
|
Server: test-server/fake swsclose
|
|
Content-Type: text/html
|
|
Funny-head: yesyes
|
|
Location: http://goto.second.host.now/3170002
|
|
Content-Length: 8
|
|
Connection: close
|
|
|
|
HTTP/1.1 200 OK
|
|
Date: Thu, 09 Nov 2010 14:49:00 GMT
|
|
Server: test-server/fake swsclose
|
|
Content-Type: text/html
|
|
Funny-head: yesyes
|
|
Content-Length: 9
|
|
|
|
contents
|
|
</datacheck>
|
|
</reply>
|
|
|
|
#
|
|
# Client-side
|
|
<client>
|
|
<server>
|
|
http
|
|
</server>
|
|
<name>
|
|
HTTP with custom Authorization: and redirect to new host
|
|
</name>
|
|
<command>
|
|
http://first.host.it.is/we/want/that/page/317 -x %HOSTIP:%HTTPPORT -H "Authorization: s3cr3t" --proxy-user testing:this --location
|
|
</command>
|
|
</client>
|
|
|
|
#
|
|
# Verify data after the test has been "shot"
|
|
<verify>
|
|
<strip>
|
|
^User-Agent:.*
|
|
</strip>
|
|
<protocol>
|
|
GET http://first.host.it.is/we/want/that/page/317 HTTP/1.1
|
|
Host: first.host.it.is
|
|
Proxy-Authorization: Basic dGVzdGluZzp0aGlz
|
|
Accept: */*
|
|
Proxy-Connection: Keep-Alive
|
|
Authorization: s3cr3t
|
|
|
|
GET http://goto.second.host.now/3170002 HTTP/1.1
|
|
Host: goto.second.host.now
|
|
Proxy-Authorization: Basic dGVzdGluZzp0aGlz
|
|
Accept: */*
|
|
Proxy-Connection: Keep-Alive
|
|
|
|
</protocol>
|
|
</verify>
|
|
</testcase>
|