Buy commercial curl support from WolfSSL. We help you work
out your issues, debug your libcurl applications, use the API, port to new
platforms, add new features and more. With a team lead by the curl founder
himself.
Re: Problem using authentication in a request
- Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]
From: Estevon Colon via curl-library <curl-library_at_lists.haxx.se>
Date: Tue, 3 May 2022 01:51:01 -0400
Stop
On Sat, Apr 30, 2022, 12:59 PM Thierry Huchard via curl-library <
curl-library_at_lists.haxx.se> wrote:
> Le 2022-04-30 18:53, Thierry Huchard via curl-library a écrit :
> > Le 2022-04-30 12:40, Thierry Huchard via curl-library a écrit :
> >> I test as soon as I have access to the device again.
> >>
> >> Thanks for your quick feedback.
> > Hi,
>
> The operation of recuperation of the information of the device it works
> well, it is in the authentication that I fail, necessary to launch a
> job.
>
>
> ############################################################################
> curl -k -v https://192.168.93.209:443/eSCL/ScannerCapabilities
> * Trying 192.168.93.209:443...
> * TCP_NODELAY set
> * Connected to 192.168.93.209 (192.168.93.209) port 443 (#0)
> * ALPN, offering h2
> * ALPN, offering http/1.1
> * successfully set certificate verify locations:
> * CAfile: /etc/ssl/certs/ca-certificates.crt
> CApath: /etc/ssl/certs
> * TLSv1.3 (OUT), TLS handshake, Client hello (1):
> * TLSv1.3 (IN), TLS handshake, Server hello (2):
> * TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
> * TLSv1.3 (OUT), TLS handshake, Client hello (1):
> * TLSv1.3 (IN), TLS handshake, Server hello (2):
> * TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
> * TLSv1.3 (IN), TLS handshake, Certificate (11):
> * TLSv1.3 (IN), TLS handshake, CERT verify (15):
> * TLSv1.3 (IN), TLS handshake, Finished (20):
> * TLSv1.3 (OUT), TLS handshake, Finished (20):
> * SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
> * ALPN, server did not agree to a protocol
> * Server certificate:
> * subject: CN=Canon Imaging Product
> * start date: Jan 1 00:00:00 2012 GMT
> * expire date: Dec 31 23:59:59 2037 GMT
> * issuer: CN=Canon Imaging Product
> * SSL certificate verify result: self signed certificate (18),
> continuing anyway.
> > GET /eSCL/ScannerCapabilities HTTP/1.1
> > Host: 192.168.93.209
> > User-Agent: curl/7.68.0
> > Accept: */*
> >
> * TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
> * Mark bundle as not supporting multiuse
> < HTTP/1.1 200 OK
> < Date: Sat, 30 Apr 2022 17:55:49 GMT
> < Server: CANON HTTP Server
> < Content-Type: text/xml
> < Content-Length: 15712
> <
> <?xml version="1.0" encoding="UTF-8"?><scan:ScannerCapabilities
> xmlns:pwg="http://www.pwg.org/schemas/2010/12/sm"
> xmlns:scan="http://schemas.hp.com/imaging/escl/2011/05/03">
> <pwg:Version>2.63</pwg:Version>
> <pwg:MakeAndModel>Canon iR-ADV C568/478</pwg:MakeAndModel>
> <pwg:SerialNumber>3LM01066e</pwg:SerialNumber>
> <scan:Manufacturer>Canon</scan:Manufacturer>
> <scan:Certifications>
> ........
> * Connection #0 to host 192.168.93.209 left intact
>
> ############################################################################
> >
> > I would have tried ....
> >
> ////////////////////////////////////////////////////////////////////////////////////////////////
> > curl -v -k --user 12345:12345 -d "$CAPABILITIES"
> > https://192.168.93.209:443/eSCL/ScanJobs
> > * Trying 192.168.93.209:443...
> > * TCP_NODELAY set
> > * Connected to 192.168.93.209 (192.168.93.209) port 443 (#0)
> > * ALPN, offering h2
> > * ALPN, offering http/1.1
> > * successfully set certificate verify locations:
> > * CAfile: /etc/ssl/certs/ca-certificates.crt
> > CApath: /etc/ssl/certs
> > * TLSv1.3 (OUT), TLS handshake, Client hello (1):
> > * TLSv1.3 (IN), TLS handshake, Server hello (2):
> > * TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
> > * TLSv1.3 (OUT), TLS handshake, Client hello (1):
> > * TLSv1.3 (IN), TLS handshake, Server hello (2):
> > * TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
> > * TLSv1.3 (IN), TLS handshake, Certificate (11):
> > * TLSv1.3 (IN), TLS handshake, CERT verify (15):
> > * TLSv1.3 (IN), TLS handshake, Finished (20):
> > * TLSv1.3 (OUT), TLS handshake, Finished (20):
> > * SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
> > * ALPN, server did not agree to a protocol
> > * Server certificate:
> > * subject: CN=Canon Imaging Product
> > * start date: Jan 1 00:00:00 2012 GMT
> > * expire date: Dec 31 23:59:59 2037 GMT
> > * issuer: CN=Canon Imaging Product
> > * SSL certificate verify result: self signed certificate (18),
> > continuing anyway.
> > * Server auth using Basic with user '12345'
> >> POST /eSCL/ScanJobs HTTP/1.1
> >> Host: 192.168.93.209
> >> Authorization: Basic MTIzNDU6MTIzNDU=
> >> User-Agent: curl/7.68.0
> >> Accept: */*
> >> Content-Length: 795
> >> Content-Type: application/x-www-form-urlencoded
> >>
> > * upload completely sent off: 795 out of 795 bytes
> > * TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
> > * Mark bundle as not supporting multiuse
> > < HTTP/1.1 500 Internal Server Error
> > < Date: Sat, 30 Apr 2022 17:50:31 GMT
> > < Server: CANON HTTP Server
> > < Content-Length: 0
> > <
> > * Connection #0 to host 192.168.93.209 left intact
> >
> //////////////////////////////////////////////////////////////////////////////////////
> >
> > Thank's
> >
> >>
> >> Thierry
> >>
> >> Le 30 avril 2022 12:19:48 GMT+02:00, Timothe Litt via curl-library
> >> <curl-library_at_lists.haxx.se> a écrit :
> >>
> >>> Perhaps the device isn't using Basic authentication. Or it requires
> >>> TLS with basic.
> >>>
> >>> If you enable authentication on the device, and omit the --user to
> >>> cURL, you should get a 401 from the device.
> >>>
> >>> What does the WWW-Authenticate header in that response show? It
> >>> will include one or more acceptable authentication types as
> >>> described n RFC 7235.
> >>>
> >>> Besides basic, it could be digest, ntlm, bearer, hoba, negotiate,
> >>> mutual, scram, ...
> >>>
> >>> Timothe Litt
> >>> ACM Distinguished Engineer
> >>> --------------------------
> >>> This communication may not represent the ACM or my employer's views,
> >>> if any, on the matters discussed.
> >>>
> >>> On 30-Apr-22 05:32, Thierry Huchard via curl-library wrote:
> >>> Hi All,
> >>>
> >>> I am trying to create a job on a Canon IR DX C478i.
> >>> I have a problem when using curl with authentication:
> >>> * Mark bundle as not supporting multiuse
> >>> When I disable authentication the device works correctly.
> >>> Do you have any idea how to solve this problem?
> >>>
> >>> ///////////////////////////////////////////////////////////////
> >>>
> >>> CAPABILITIES='<?xml version="1.0"
> >>> encoding="UTF-8"?><scan:ScanSettings
> >>> xmlns:pwg="http://www.pwg.org/schemas/2010/12/sm" [1]
> >>> xmlns:scan="http://schemas.hp.com/imaging/escl/2011/05/03"
> >>>
> >>
> [2]><pwg:Version>2.0</pwg:Version><pwg:ScanRegions><pwg:ScanRegion><pwg:ContentRegionUnits>escl:ThreeHundredthsOfInches</pwg:ContentRegionUnits><pwg:Height>2550</pwg:Height><pwg:Width>4200</pwg:Width><pwg:XOffset>0</pwg:XOffset><pwg:YOffset>0</pwg:YOffset></pwg:ScanRegion></pwg:ScanRegions><pwg:DocumentFormat>application/pdf</pwg:DocumentFormat><scan:DocumentFormatExt>application/pdf</scan:DocumentFormatExt><scan:ColorMode>RGB24</scan:ColorMode><scan:XResolution>300</scan:XResolution><scan:YResolution>300</scan:YResolution><pwg:InputSource>Platen</pwg:InputSource><scan:InputSource>Platen</scan:InputSource></scan:ScanSettings>'
> >>> root_at_jammy:~/hplip-3.21.12+dfsg0# curl -v --user 1234:12345 -d
> >>> "$CAPABILITIES" http://192.168.93.209:80/eSCL/ScanJobs
> >>> * Trying 192.168.93.209:80...
> >>> * Connected to 192.168.93.209 (192.168.93.209) port 80 (#0)
> >>> * Server auth using Basic with user '1234'
> >>> POST /eSCL/ScanJobs HTTP/1.1
> >>> Host: 192.168.93.209
> >>> Authorization: Basic MTIzNDoxMjM0NQ==
> >>> User-Agent: curl/7.81.0
> >>> Accept: */*
> >>> Content-Length: 795
> >>> Content-Type: application/x-www-form-urlencoded
> >>>
> >>> * Mark bundle as not supporting multiuse
> >>> < HTTP/1.1 500 Internal Server Error
> >>> < Date: Sat, 30 Apr 2022 09:50:40 GMT
> >>> < Server: CANON HTTP Server
> >>> < Content-Length: 0
> >>> <
> >>> * Connection #0 to host 192.168.93.209 left intact
> >>>
> >>> /////////////////////////////////////////////////////////////////
> >>>
> >>> Thank's
> >>>
> >>> Thierry
> >>
> >> --
> >> Envoyé de mon appareil Android avec Courriel Ordissimo Mail. Veuillez
> >> excuser ma brièveté.
> >>
> >> Links:
> >> ------
> >> [1] http://www.pwg.org/schemas/2010/12/sm
> >> [2] http://schemas.hp.com/imaging/escl/2011/05/03
> --
> Unsubscribe: https://lists.haxx.se/listinfo/curl-library
> Etiquette: https://curl.haxx.se/mail/etiquette.html
>
Date: Tue, 3 May 2022 01:51:01 -0400
Stop
On Sat, Apr 30, 2022, 12:59 PM Thierry Huchard via curl-library <
curl-library_at_lists.haxx.se> wrote:
> Le 2022-04-30 18:53, Thierry Huchard via curl-library a écrit :
> > Le 2022-04-30 12:40, Thierry Huchard via curl-library a écrit :
> >> I test as soon as I have access to the device again.
> >>
> >> Thanks for your quick feedback.
> > Hi,
>
> The operation of recuperation of the information of the device it works
> well, it is in the authentication that I fail, necessary to launch a
> job.
>
>
> ############################################################################
> curl -k -v https://192.168.93.209:443/eSCL/ScannerCapabilities
> * Trying 192.168.93.209:443...
> * TCP_NODELAY set
> * Connected to 192.168.93.209 (192.168.93.209) port 443 (#0)
> * ALPN, offering h2
> * ALPN, offering http/1.1
> * successfully set certificate verify locations:
> * CAfile: /etc/ssl/certs/ca-certificates.crt
> CApath: /etc/ssl/certs
> * TLSv1.3 (OUT), TLS handshake, Client hello (1):
> * TLSv1.3 (IN), TLS handshake, Server hello (2):
> * TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
> * TLSv1.3 (OUT), TLS handshake, Client hello (1):
> * TLSv1.3 (IN), TLS handshake, Server hello (2):
> * TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
> * TLSv1.3 (IN), TLS handshake, Certificate (11):
> * TLSv1.3 (IN), TLS handshake, CERT verify (15):
> * TLSv1.3 (IN), TLS handshake, Finished (20):
> * TLSv1.3 (OUT), TLS handshake, Finished (20):
> * SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
> * ALPN, server did not agree to a protocol
> * Server certificate:
> * subject: CN=Canon Imaging Product
> * start date: Jan 1 00:00:00 2012 GMT
> * expire date: Dec 31 23:59:59 2037 GMT
> * issuer: CN=Canon Imaging Product
> * SSL certificate verify result: self signed certificate (18),
> continuing anyway.
> > GET /eSCL/ScannerCapabilities HTTP/1.1
> > Host: 192.168.93.209
> > User-Agent: curl/7.68.0
> > Accept: */*
> >
> * TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
> * Mark bundle as not supporting multiuse
> < HTTP/1.1 200 OK
> < Date: Sat, 30 Apr 2022 17:55:49 GMT
> < Server: CANON HTTP Server
> < Content-Type: text/xml
> < Content-Length: 15712
> <
> <?xml version="1.0" encoding="UTF-8"?><scan:ScannerCapabilities
> xmlns:pwg="http://www.pwg.org/schemas/2010/12/sm"
> xmlns:scan="http://schemas.hp.com/imaging/escl/2011/05/03">
> <pwg:Version>2.63</pwg:Version>
> <pwg:MakeAndModel>Canon iR-ADV C568/478</pwg:MakeAndModel>
> <pwg:SerialNumber>3LM01066e</pwg:SerialNumber>
> <scan:Manufacturer>Canon</scan:Manufacturer>
> <scan:Certifications>
> ........
> * Connection #0 to host 192.168.93.209 left intact
>
> ############################################################################
> >
> > I would have tried ....
> >
> ////////////////////////////////////////////////////////////////////////////////////////////////
> > curl -v -k --user 12345:12345 -d "$CAPABILITIES"
> > https://192.168.93.209:443/eSCL/ScanJobs
> > * Trying 192.168.93.209:443...
> > * TCP_NODELAY set
> > * Connected to 192.168.93.209 (192.168.93.209) port 443 (#0)
> > * ALPN, offering h2
> > * ALPN, offering http/1.1
> > * successfully set certificate verify locations:
> > * CAfile: /etc/ssl/certs/ca-certificates.crt
> > CApath: /etc/ssl/certs
> > * TLSv1.3 (OUT), TLS handshake, Client hello (1):
> > * TLSv1.3 (IN), TLS handshake, Server hello (2):
> > * TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
> > * TLSv1.3 (OUT), TLS handshake, Client hello (1):
> > * TLSv1.3 (IN), TLS handshake, Server hello (2):
> > * TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
> > * TLSv1.3 (IN), TLS handshake, Certificate (11):
> > * TLSv1.3 (IN), TLS handshake, CERT verify (15):
> > * TLSv1.3 (IN), TLS handshake, Finished (20):
> > * TLSv1.3 (OUT), TLS handshake, Finished (20):
> > * SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
> > * ALPN, server did not agree to a protocol
> > * Server certificate:
> > * subject: CN=Canon Imaging Product
> > * start date: Jan 1 00:00:00 2012 GMT
> > * expire date: Dec 31 23:59:59 2037 GMT
> > * issuer: CN=Canon Imaging Product
> > * SSL certificate verify result: self signed certificate (18),
> > continuing anyway.
> > * Server auth using Basic with user '12345'
> >> POST /eSCL/ScanJobs HTTP/1.1
> >> Host: 192.168.93.209
> >> Authorization: Basic MTIzNDU6MTIzNDU=
> >> User-Agent: curl/7.68.0
> >> Accept: */*
> >> Content-Length: 795
> >> Content-Type: application/x-www-form-urlencoded
> >>
> > * upload completely sent off: 795 out of 795 bytes
> > * TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
> > * Mark bundle as not supporting multiuse
> > < HTTP/1.1 500 Internal Server Error
> > < Date: Sat, 30 Apr 2022 17:50:31 GMT
> > < Server: CANON HTTP Server
> > < Content-Length: 0
> > <
> > * Connection #0 to host 192.168.93.209 left intact
> >
> //////////////////////////////////////////////////////////////////////////////////////
> >
> > Thank's
> >
> >>
> >> Thierry
> >>
> >> Le 30 avril 2022 12:19:48 GMT+02:00, Timothe Litt via curl-library
> >> <curl-library_at_lists.haxx.se> a écrit :
> >>
> >>> Perhaps the device isn't using Basic authentication. Or it requires
> >>> TLS with basic.
> >>>
> >>> If you enable authentication on the device, and omit the --user to
> >>> cURL, you should get a 401 from the device.
> >>>
> >>> What does the WWW-Authenticate header in that response show? It
> >>> will include one or more acceptable authentication types as
> >>> described n RFC 7235.
> >>>
> >>> Besides basic, it could be digest, ntlm, bearer, hoba, negotiate,
> >>> mutual, scram, ...
> >>>
> >>> Timothe Litt
> >>> ACM Distinguished Engineer
> >>> --------------------------
> >>> This communication may not represent the ACM or my employer's views,
> >>> if any, on the matters discussed.
> >>>
> >>> On 30-Apr-22 05:32, Thierry Huchard via curl-library wrote:
> >>> Hi All,
> >>>
> >>> I am trying to create a job on a Canon IR DX C478i.
> >>> I have a problem when using curl with authentication:
> >>> * Mark bundle as not supporting multiuse
> >>> When I disable authentication the device works correctly.
> >>> Do you have any idea how to solve this problem?
> >>>
> >>> ///////////////////////////////////////////////////////////////
> >>>
> >>> CAPABILITIES='<?xml version="1.0"
> >>> encoding="UTF-8"?><scan:ScanSettings
> >>> xmlns:pwg="http://www.pwg.org/schemas/2010/12/sm" [1]
> >>> xmlns:scan="http://schemas.hp.com/imaging/escl/2011/05/03"
> >>>
> >>
> [2]><pwg:Version>2.0</pwg:Version><pwg:ScanRegions><pwg:ScanRegion><pwg:ContentRegionUnits>escl:ThreeHundredthsOfInches</pwg:ContentRegionUnits><pwg:Height>2550</pwg:Height><pwg:Width>4200</pwg:Width><pwg:XOffset>0</pwg:XOffset><pwg:YOffset>0</pwg:YOffset></pwg:ScanRegion></pwg:ScanRegions><pwg:DocumentFormat>application/pdf</pwg:DocumentFormat><scan:DocumentFormatExt>application/pdf</scan:DocumentFormatExt><scan:ColorMode>RGB24</scan:ColorMode><scan:XResolution>300</scan:XResolution><scan:YResolution>300</scan:YResolution><pwg:InputSource>Platen</pwg:InputSource><scan:InputSource>Platen</scan:InputSource></scan:ScanSettings>'
> >>> root_at_jammy:~/hplip-3.21.12+dfsg0# curl -v --user 1234:12345 -d
> >>> "$CAPABILITIES" http://192.168.93.209:80/eSCL/ScanJobs
> >>> * Trying 192.168.93.209:80...
> >>> * Connected to 192.168.93.209 (192.168.93.209) port 80 (#0)
> >>> * Server auth using Basic with user '1234'
> >>> POST /eSCL/ScanJobs HTTP/1.1
> >>> Host: 192.168.93.209
> >>> Authorization: Basic MTIzNDoxMjM0NQ==
> >>> User-Agent: curl/7.81.0
> >>> Accept: */*
> >>> Content-Length: 795
> >>> Content-Type: application/x-www-form-urlencoded
> >>>
> >>> * Mark bundle as not supporting multiuse
> >>> < HTTP/1.1 500 Internal Server Error
> >>> < Date: Sat, 30 Apr 2022 09:50:40 GMT
> >>> < Server: CANON HTTP Server
> >>> < Content-Length: 0
> >>> <
> >>> * Connection #0 to host 192.168.93.209 left intact
> >>>
> >>> /////////////////////////////////////////////////////////////////
> >>>
> >>> Thank's
> >>>
> >>> Thierry
> >>
> >> --
> >> Envoyé de mon appareil Android avec Courriel Ordissimo Mail. Veuillez
> >> excuser ma brièveté.
> >>
> >> Links:
> >> ------
> >> [1] http://www.pwg.org/schemas/2010/12/sm
> >> [2] http://schemas.hp.com/imaging/escl/2011/05/03
> --
> Unsubscribe: https://lists.haxx.se/listinfo/curl-library
> Etiquette: https://curl.haxx.se/mail/etiquette.html
>
-- Unsubscribe: https://lists.haxx.se/listinfo/curl-library Etiquette: https://curl.haxx.se/mail/etiquette.htmlReceived on 2022-05-03