home *** CD-ROM | disk | FTP | other *** search
/ Maximum CD 2010 November / maximum-cd-2010-11.iso / DiscContents / calibre-0.7.13.msi / file_2491 < prev    next >
Encoding:
Text File  |  2005-11-23  |  6.3 KB  |  161 lines
  1. Index: fetch_url.py
  2. ===================================================================
  3. RCS file: /cvsroot/pywin32/pywin32/win32/Demos/security/sspi/fetch_url.py,v
  4. retrieving revision 1.1
  5. diff -r1.1 fetch_url.py
  6. 14a15,16
  7. > import re
  8. > import win32security, sspicon
  9. 24c26
  10. < #    h.set_debuglevel(9)
  11. ---
  12. >     h.set_debuglevel(9)
  13. 48c50,77
  14. <         ca = ClientAuth("NTLM", auth_info=auth_info)
  15. ---
  16. >         for auth_hdr in resp.msg.getheaders("WWW-Authenticate"):
  17. >             # Eeek - this regex doesn't handle quoted quote chars!
  18. >             m = re.match('[ \t]*([^ \t]+)', auth_hdr)
  19. >             params = {}
  20. >             scheme = ""
  21. >             if m is not None:
  22. >                 scheme = m.group(1).lower()
  23. >                 rest = auth_hdr[m.span()[1]:]
  24. >                 auth_value = rest
  25. >                 while rest:
  26. >                     m = re.match('[ \t]*,?[ \t]*([^ \t]+)[ \t]*=[ \t]*"([^ \t]+)"', rest)
  27. >                     if m is None:
  28. >                         break
  29. >                     params[m.group(1)] = m.group(2)
  30. >                     rest = rest[m.span()[1]:]
  32. >             #sl = scheme.lower()
  33. >             if scheme.lower() in ["negotiate", "ntlm"]:
  34. >                 # If I pass 'negotiate' to ClientAuth here, it appears to
  35. >                 # perform the auth without the full NTLM dance??
  36. >                 ca = ClientAuth("NTLM", auth_info=auth_info)
  37. >                 break
  38. >             if scheme.lower() in ["digest"]:
  39. >                 ca = ClientAuth("WDigest", auth_info=auth_info)
  40. >                 break
  41. >             
  42. >         else:
  43. >             raise RuntimeError, "Don't handle any offered auth schemes"
  44. 50c79,91
  45. <         data = None
  46. ---
  49. >         credentials, \
  50. >         credentials_expiry=win32security.AcquireCredentialsHandle(
  51. >                                 None, auth_scheme,
  52. >                                 sspicon.SECPKG_CRED_OUTBOUND,
  53. >                                 None, None)
  56. >         #data = decodestring(params["nonce"])
  57. >         data = "Digest" + auth_value
  58. >         context = None
  59. >         last = False
  60. 52,55c93,155
  61. <             err, out_buf = ca.authorize(data)
  62. <             data = out_buf[0].Buffer
  63. <             # Encode it as base64 as required by HTTP
  64. <             auth = encodestring(data).replace("\012", "")
  65. ---
  67. >             context_in = context
  68. >             if context is None:
  69. >                 context = win32security.CtxtHandleType()
  71. >             ISC_REQ_HTTP = 0x10000000
  72. >             scflags = ISC_REQ_HTTP | sspicon.ISC_RET_REPLAY_DETECT
  73. >                       # sspicon.ISC_REQ_SEQUENCE_DETECT|\
  74. >                       # sspicon.ISC_REQ_REPLAY_DETECT|ISC_REQ_HTTP #|sspicon.ISC_REQ_ALLOCATE_MEMORY
  75. >                       # docs say can't use sspicon.ISC_REQ_CONFIDENTIALITY with ISC_REQ_HTTP
  76. >                       # sspicon.ISC_REQ_INTEGRITY|??
  78. >             print "The data is", data
  80. >             sec_buffer_new=win32security.SecBufferDescType()
  81. >             # 0 SECBUFFER_TOKEN Empty 
  82. >             tokenbuf=win32security.SecBufferType(ca.pkg_info['MaxToken'],
  83. >                                                  sspicon.SECBUFFER_TOKEN)
  84. >             tokenbuf.Buffer = data
  85. >             sec_buffer_new.append(tokenbuf)
  87. >             # 1 SECBUFFER_PKG_PARAMS Method 
  88. >             val = "GET"
  89. >             tokenbuf=win32security.SecBufferType(len(val)+1,
  90. >                                                  sspicon.SECBUFFER_PKG_PARAMS)
  91. >             tokenbuf.Buffer = val
  92. >             sec_buffer_new.append(tokenbuf)
  94. >             # 2 SECBUFFER_PKG_PARAMS Hentity.
  95. >             # as if...
  96. >             import md5
  97. >             val = md5.new('').hexdigest()
  98. >             #val = ''
  99. >             tokenbuf=win32security.SecBufferType(len(val)+1,
  100. >                                                  sspicon.SECBUFFER_PKG_PARAMS)
  101. >             tokenbuf.Buffer = val
  102. >             sec_buffer_new.append(tokenbuf)
  104. >             # NOT filled in by sspi due to ISC_REQ_ALLOCATE_MEMORY flag
  105. >             sec_buffer_out=win32security.SecBufferDescType()
  106. >             tokenbuf=win32security.SecBufferType(ca.pkg_info['MaxToken'],
  107. >                                                  sspicon.SECBUFFER_TOKEN)
  108. >             sec_buffer_out.append(tokenbuf)
  110. >             err, attr, exp=win32security.InitializeSecurityContext(
  111. >                 credentials,
  112. >                 context_in,
  113. >                 url,
  114. >                 scflags,
  115. >                 0,
  116. >                 sec_buffer_new,
  117. >                 context,
  118. >                 sec_buffer_out)
  120. >             print "InitializeSecurityContext returned", err, attr, exp
  121. > #            print "Buffer has", len(sec_buffer_out)
  122. > #            print sec_buffer_out[0].Buffer
  124. >             data = sec_buffer_out[0].Buffer
  125. >             print "challenge response is", data
  126. >             if last:
  127. >                 print "LAst one - breaking!"
  128. >                 break
  129. 57c157
  130. <             h.putheader('Authorization', auth_scheme + ' ' + auth)
  131. ---
  132. >             h.putheader('Authorization', 'Digest ' + data)
  133. 67c167,168
  134. <                 break
  135. ---
  136. >                 print "Err - 0 - flagging as last"
  137. >                 last = True
  138. 73c174,178
  139. <                         print repr(resp.read(int(cl)))
  140. ---
  141. >                         got = resp.read(int(cl))
  142. >                         if options.show_body:
  143. >                             print repr(got)
  144. >                         else:
  145. >                             print "<specify --show-body to see error page>"
  146. 79,87c184,187
  147. <             assert not resp.will_close, "NTLM is per-connection - must not close"
  148. <             schemes = [s.strip() for s in resp.msg.get("WWW-Authenticate", "").split(",")]
  149. <             for scheme in schemes:
  150. <                 if scheme.startswith(auth_scheme):
  151. <                     data = decodestring(scheme[len(auth_scheme)+1:])
  152. <                     break
  153. <             else:
  154. <                 print "Could not find scheme '%s' in schemes %r" % (auth_scheme, schemes)
  155. <                 break
  156. ---
  157. > #            assert not resp.will_close, "NTLM is per-connection - must not close"
  158. >             #if scheme.lower() in ["ntlm", "negotiate"]:
  160. >             data = resp.msg.get("WWW-Authenticate", "")
  161.