[jcifs] jcifs loses post parameters

Tapperson Kevin Kevin.Tapperson at hcahealthcare.com
Thu Jan 26 16:16:11 GMT 2006 

You should see duplicate requests submitted.  This is how NTLM works
with the HTTP post operation.
 
The first HTTP post request submitted should contain an NTLM type-1
message and NO post parameter data.  The server should respond with an
HTTP 401 error response and an NTLM type-2 message.  The server should
not attempt to do any sort of processing on the first request, other
than rejecting it with the HTTP 401 error response.
The second post request submitted should contain an NTLM type-3 message
AND the post parameter data.  The server should process this request.
 

________________________________

From: Abhijeet Sarwate [mailto:abhijeet.sarwate at gmail.com] 
Sent: Thursday, January 26, 2006 9:57 AM
To: Tapperson Kevin
Cc: jcifs at lists.samba.org
Subject: Re: [jcifs] jcifs loses post parameters


Hi Kevin
 
I see duplicate requests being submitted !
 
any workaround for this?
 
abhijeet

 
On 1/25/06, Abhijeet Sarwate <abhijeet.sarwate at gmail.com> wrote: 

	Kevin
	 
	Thanks for a very well researched solution.
	
	 
	abhijeet 
	
	 
	
	On 1/25/06, Tapperson Kevin <Kevin.Tapperson at hcahealthcare.com >
wrote: 

		The NTLMPostFilter that I had posted previously should
be used in
		conjunction with the NtlmHttpFilter.  It should be
placed in the filter 
		chain BEFORE the NtlmHttpFilter.
		
		-----Original Message-----
		From: jcifs-bounces+kevin.tapperson=
hcahealthcare.com at lists.samba.org
<mailto:hcahealthcare.com at lists.samba.org> 
		[mailto:
jcifs-bounces+kevin.tapperson=hcahealthcare.com at lists.samba.org
<mailto:jcifs-bounces+kevin.tapperson=hcahealthcare.com at lists.samba.org>
]
		On Behalf Of Abhijeet Sarwate
		Sent: Wednesday, January 25, 2006 10:33 AM
		To: Michael B Allen
		Cc: Tapperson Kevin; jcifs at lists.samba.org
		Subject: Re: [jcifs] jcifs loses post parameters
		
		Hi Mike
		
		I have seen both the posts before. Where would you put
that filter ?
		Inplace or after etc ?
		
		Let me know
		
		thanks for the quick response
		
		
		On 1/24/06, Michael B Allen <mba2000 at ioplex.com> wrote:
		
		       On Tue, 24 Jan 2006 09:36:21 -0600
		       "Tapperson Kevin" <
Kevin.Tapperson at hcahealthcare.com 
		<mailto:Kevin.Tapperson at hcahealthcare.com> > wrote:
		
		       > See: 
		       >
http://jcifs.samba.org/src/docs/ntlmhttpauth.html#post
		       > <
http://jcifs.samba.org/src/docs/ntlmhttpauth.html 
		< http://jcifs.samba.org/src/docs/ntlmhttpauth.html
<http://jcifs.samba.org/src/docs/ntlmhttpauth.html> > >
		       >
		       > and:
		       >
		       >
	
http://article.gmane.org/gmane.network.samba.java/3708/match=ntlmpostfil
		ter
		
		       Man this IE preemtive auth is a pain. Heres the
KB article about
		it:
		
		       http://support.microsoft.com/?id=251404
		
		       What I would like to know is what exactly IIS
does if you
		perform the
		       server side solution mentioned:
		
		       * Configure the Web site to permit both anonymous
access and 
		NLTM
		         authentication (Integrated Windows
authentication).
		
		       Even if anonymous access is enabled, why would
that stop IE from
		
		       preemtively trying to authenticate?
		
		       Mike
		
		
		
		



-------------- next part --------------
HTML attachment scrubbed and removed

More information about the jcifs mailing list