[jcifs] HTTP POST and Protecting Sub-Content
Michael B Allen
mba2000 at ioplex.com
Wed May 26 22:48:59 GMT 2004
I'm working on the NTLM HTTP Authentication Filter documentation. One
section reads:
"Once IE has negotiated NTLM HTTP authentication it will proactively
renegotiate NTLM for POST requests for all content associated with the
server (based on IP?). Therefore when using HTTP POST requests it is not
possible to restrict access to some content on the server as IE will
attempt and fail to negotiate NTLM (it hangs?). This is a protocol
limitation and there is no clean way to convince IE to stop negotiating
NTLM (although it may be possible by sending an HTTP error reponse)."
Would anyone happen to know the details regarding what IE is tracking that
triggers it to preemptively negotiate NTLM for HTTP POST requests? Is it
the IP or server name or ...? Also, what is the behavior of a client that
attempts and fails due to this problem? Finally, was a definitive answer
to getting IE to stop negotiating POST requests ever established?
Thanks,
Mike
More information about the jcifs
mailing list