curl/tests/data/test154

<testcase>
<info>
<keywords>
HTTP
HTTP PUT
HTTP Digest auth
--anyauth
</keywords>
</info>

# Server-side
<reply>
<servercmd>
auth_required
</servercmd>
<data>
HTTP/1.1 401 Authorization Required swsclose
Server: Apache/1.3.27 (Darwin) PHP/4.1.2
WWW-Authenticate: Blackmagic realm="gimme all yer s3cr3ts"
WWW-Authenticate: Basic realm="gimme all yer s3cr3ts"
WWW-Authenticate: Digest realm="gimme all yer s3cr3ts", nonce="11223344"
Content-Type: text/html; charset=iso-8859-1
Connection: close

This is not the real page
</data>

# This is supposed to be returned when the server gets a
# Authorization: Digest line passed-in from the client
<data1000>
HTTP/1.1 200 OK swsclose
Server: Apache/1.3.27 (Darwin) PHP/4.1.2
Content-Type: text/html; charset=iso-8859-1
Content-Length: 23
Connection: close

This IS the real page!
</data1000>

<datacheck>
HTTP/1.1 401 Authorization Required swsclose
Server: Apache/1.3.27 (Darwin) PHP/4.1.2
WWW-Authenticate: Blackmagic realm="gimme all yer s3cr3ts"
WWW-Authenticate: Basic realm="gimme all yer s3cr3ts"
WWW-Authenticate: Digest realm="gimme all yer s3cr3ts", nonce="11223344"
Content-Type: text/html; charset=iso-8859-1
Connection: close

HTTP/1.1 200 OK swsclose
Server: Apache/1.3.27 (Darwin) PHP/4.1.2
Content-Type: text/html; charset=iso-8859-1
Content-Length: 23
Connection: close

This IS the real page!
</datacheck>

</reply>

# Client-side
<client>
<server>
http
</server>
<features>
!SSPI
crypto
</features>
 <name>
HTTP PUT with --anyauth authorization (picking Digest)
 </name>
 <command>
http://%HOSTIP:%HTTPPORT/%TESTNUMBER -T log/put%TESTNUMBER -u testuser:testpass --anyauth
</command>
<file name="log/put%TESTNUMBER">
This is data we upload with PUT
a second line
line three
four is the number of lines
</file>
</client>

# Verify data after the test has been "shot"
<verify>
<protocol>
PUT /%TESTNUMBER HTTP/1.1
Host: %HOSTIP:%HTTPPORT
User-Agent: curl/%VERSION
Accept: */*
Content-Length: 85
Expect: 100-continue

PUT /%TESTNUMBER HTTP/1.1
Host: %HOSTIP:%HTTPPORT
Authorization: Digest username="testuser", realm="gimme all yer s3cr3ts", nonce="11223344", uri="/%TESTNUMBER", response="b71551e12d1c456e47d8388ecb2edeca"
User-Agent: curl/%VERSION
Accept: */*
Content-Length: 85
Expect: 100-continue

This is data we upload with PUT
a second line
line three
four is the number of lines
</protocol>
</verify>
</testcase>
Convert (most of) the test data files into genuine XML. A handful still are not, due mainly to the lack of support for XML character entities (e.g. & => & ). This will make it easier to validate test files using tools like xmllint, as well as edit and view them using XML tools. 2007-01-23 10:25:56 +08:00			`<testcase>`
Added some <keywords> sections and use some key words more consistently. 2007-10-12 09:44:22 +08:00			`<info>`
			`<keywords>`
			`HTTP`
			`HTTP PUT`
			`HTTP Digest auth`
			`--anyauth`
			`</keywords>`
			`</info>`

New authentication code added, particularly noticable when doing POST or PUT with Digest or NTLM. libcurl will now use HEAD to negotiate the authentication and when done perform the requested POST. 2004-04-06 23:14:10 +08:00			`# Server-side`
			`<reply>`
			`<servercmd>`
			`auth_required`
			`</servercmd>`
			`<data>`
			`HTTP/1.1 401 Authorization Required swsclose`
			`Server: Apache/1.3.27 (Darwin) PHP/4.1.2`
			`WWW-Authenticate: Blackmagic realm="gimme all yer s3cr3ts"`
			`WWW-Authenticate: Basic realm="gimme all yer s3cr3ts"`
			`WWW-Authenticate: Digest realm="gimme all yer s3cr3ts", nonce="11223344"`
			`Content-Type: text/html; charset=iso-8859-1`
Make the server include "Connection: close" in the headers of the replies it actually will close. This is after all what HTTP 1.1 says a server should do. 2004-04-19 16:41:36 +08:00			`Connection: close`
New authentication code added, particularly noticable when doing POST or PUT with Digest or NTLM. libcurl will now use HEAD to negotiate the authentication and when done perform the requested POST. 2004-04-06 23:14:10 +08:00
			`This is not the real page`
			`</data>`

			`# This is supposed to be returned when the server gets a`
			`# Authorization: Digest line passed-in from the client`
			`<data1000>`
			`HTTP/1.1 200 OK swsclose`
			`Server: Apache/1.3.27 (Darwin) PHP/4.1.2`
			`Content-Type: text/html; charset=iso-8859-1`
			`Content-Length: 23`
Make the server include "Connection: close" in the headers of the replies it actually will close. This is after all what HTTP 1.1 says a server should do. 2004-04-19 16:41:36 +08:00			`Connection: close`
New authentication code added, particularly noticable when doing POST or PUT with Digest or NTLM. libcurl will now use HEAD to negotiate the authentication and when done perform the requested POST. 2004-04-06 23:14:10 +08:00
			`This IS the real page!`
			`</data1000>`

			`<datacheck>`
			`HTTP/1.1 401 Authorization Required swsclose`
			`Server: Apache/1.3.27 (Darwin) PHP/4.1.2`
			`WWW-Authenticate: Blackmagic realm="gimme all yer s3cr3ts"`
			`WWW-Authenticate: Basic realm="gimme all yer s3cr3ts"`
			`WWW-Authenticate: Digest realm="gimme all yer s3cr3ts", nonce="11223344"`
			`Content-Type: text/html; charset=iso-8859-1`
Make the server include "Connection: close" in the headers of the replies it actually will close. This is after all what HTTP 1.1 says a server should do. 2004-04-19 16:41:36 +08:00			`Connection: close`
New authentication code added, particularly noticable when doing POST or PUT with Digest or NTLM. libcurl will now use HEAD to negotiate the authentication and when done perform the requested POST. 2004-04-06 23:14:10 +08:00
			`HTTP/1.1 200 OK swsclose`
			`Server: Apache/1.3.27 (Darwin) PHP/4.1.2`
			`Content-Type: text/html; charset=iso-8859-1`
			`Content-Length: 23`
Make the server include "Connection: close" in the headers of the replies it actually will close. This is after all what HTTP 1.1 says a server should do. 2004-04-19 16:41:36 +08:00			`Connection: close`
New authentication code added, particularly noticable when doing POST or PUT with Digest or NTLM. libcurl will now use HEAD to negotiate the authentication and when done perform the requested POST. 2004-04-06 23:14:10 +08:00
			`This IS the real page!`
			`</datacheck>`

			`</reply>`

			`# Client-side`
			`<client>`
			`<server>`
			`http`
			`</server>`
Updated the test harness to add a new "crypto" feature check and updated the appropriate test case to use it. For now, this is treated the same as the "SSL" feature because curl doesn't list it separately. 2007-03-10 07:39:42 +08:00			`<features>`
tests: Don't run HTTP digest tests for SSPI based builds Added !SSPI to the features list of the HTTP digest tests, as SSPI based builds now use the Windows SSPI messaging API rather than the internal functions, and we can't control the random numbers that get used as part of the digest. 2014-11-07 03:57:16 +08:00			`!SSPI`
Updated the test harness to add a new "crypto" feature check and updated the appropriate test case to use it. For now, this is treated the same as the "SSL" feature because curl doesn't list it separately. 2007-03-10 07:39:42 +08:00			`crypto`
			`</features>`
New authentication code added, particularly noticable when doing POST or PUT with Digest or NTLM. libcurl will now use HEAD to negotiate the authentication and when done perform the requested POST. 2004-04-06 23:14:10 +08:00			`<name>`
			`HTTP PUT with --anyauth authorization (picking Digest)`
			`</name>`
			`<command>`
tests: use %TESTNUMBER instead of fixed number This makes the tests easier to copy and relocate to other test numbers without having to update content. Closes #6738 2021-03-13 00:38:26 +08:00			`http://%HOSTIP:%HTTPPORT/%TESTNUMBER -T log/put%TESTNUMBER -u testuser:testpass --anyauth`
New authentication code added, particularly noticable when doing POST or PUT with Digest or NTLM. libcurl will now use HEAD to negotiate the authentication and when done perform the requested POST. 2004-04-06 23:14:10 +08:00			`</command>`
tests: use %TESTNUMBER instead of fixed number This makes the tests easier to copy and relocate to other test numbers without having to update content. Closes #6738 2021-03-13 00:38:26 +08:00			`<file name="log/put%TESTNUMBER">`
New authentication code added, particularly noticable when doing POST or PUT with Digest or NTLM. libcurl will now use HEAD to negotiate the authentication and when done perform the requested POST. 2004-04-06 23:14:10 +08:00			`This is data we upload with PUT`
			`a second line`
			`line three`
			`four is the number of lines`
			`</file>`
			`</client>`

			`# Verify data after the test has been "shot"`
			`<verify>`
			`<protocol>`
tests: use %TESTNUMBER instead of fixed number This makes the tests easier to copy and relocate to other test numbers without having to update content. Closes #6738 2021-03-13 00:38:26 +08:00			`PUT /%TESTNUMBER HTTP/1.1`
Replaced 127.0.0.1 with %HOSTIP where possible 2007-09-15 03:32:31 +08:00			`Host: %HOSTIP:%HTTPPORT`
runtests: provide curl's version string as %VERSION for tests ... so that we can check HTTP requests for User-Agent: curl/%VERSION Update 600+ test cases accordingly. Closes #6037 2020-10-02 19:45:24 +08:00			`User-Agent: curl/%VERSION`
New authentication code added, particularly noticable when doing POST or PUT with Digest or NTLM. libcurl will now use HEAD to negotiate the authentication and when done perform the requested POST. 2004-04-06 23:14:10 +08:00			`Accept: /`
HTTP "auth done right". See lib/README.httpauth 2004-11-25 00:11:35 +08:00			`Content-Length: 85`
			`Expect: 100-continue`
New authentication code added, particularly noticable when doing POST or PUT with Digest or NTLM. libcurl will now use HEAD to negotiate the authentication and when done perform the requested POST. 2004-04-06 23:14:10 +08:00
tests: use %TESTNUMBER instead of fixed number This makes the tests easier to copy and relocate to other test numbers without having to update content. Closes #6738 2021-03-13 00:38:26 +08:00			`PUT /%TESTNUMBER HTTP/1.1`
http: always send Host: header as first header ...after the method line: "Since the Host field-value is critical information for handling a request, a user agent SHOULD generate Host as the first header field following the request-line." / RFC 7230 section 5.4 Additionally, this will also make libcurl ignore multiple specified custom Host: headers and only use the first one. Test 1121 has been updated accordingly Bug: http://curl.haxx.se/bug/view.cgi?id=1491 Reported-by: Rainer Canavan 2015-03-12 07:50:46 +08:00			`Host: %HOSTIP:%HTTPPORT`
tests: use %TESTNUMBER instead of fixed number This makes the tests easier to copy and relocate to other test numbers without having to update content. Closes #6738 2021-03-13 00:38:26 +08:00			`Authorization: Digest username="testuser", realm="gimme all yer s3cr3ts", nonce="11223344", uri="/%TESTNUMBER", response="b71551e12d1c456e47d8388ecb2edeca"`
runtests: provide curl's version string as %VERSION for tests ... so that we can check HTTP requests for User-Agent: curl/%VERSION Update 600+ test cases accordingly. Closes #6037 2020-10-02 19:45:24 +08:00			`User-Agent: curl/%VERSION`
New authentication code added, particularly noticable when doing POST or PUT with Digest or NTLM. libcurl will now use HEAD to negotiate the authentication and when done perform the requested POST. 2004-04-06 23:14:10 +08:00			`Accept: /`
			`Content-Length: 85`
			`Expect: 100-continue`

			`This is data we upload with PUT`
			`a second line`
			`line three`
			`four is the number of lines`
			`</protocol>`
			`</verify>`
Convert (most of) the test data files into genuine XML. A handful still are not, due mainly to the lack of support for XML character entities (e.g. & => & ). This will make it easier to validate test files using tools like xmllint, as well as edit and view them using XML tools. 2007-01-23 10:25:56 +08:00			`</testcase>`