Bugs item #2042440, was opened at 2008-08-08 04:19
Message generated for change (Comment added) made by bagder
You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=100976&aid=2042440&group_id=976

Please note that this message will contain a full copy of the comment thread,
including the initial issue submission, for this request,
not just the latest update.
Category: http
Group: wrong behaviour
>Status: Closed
>Resolution: Fixed
Priority: 5
Private: No
Submitted By: Constantine Sapuntzakis (csapuntz)
Assigned to: Daniel Stenberg (bagder)
Summary: NTLM proxy overrides endpoint auth

Initial Comment:
Problem:

Proxy uses NTLM authentication. Remote endpoint uses basic authentication. Remote endpoint requests a "Connection: close" after sending initial 401 indicating Basic auth requested (the server is mod_php so persistent connections are hard). curl obliges and
closes the connection.

Normally, curl will reopen the connection to the server
and send basic auth on next connection. However, the NTLM cleanup code in Curl_disconnect clobbers the result of the negotiation with the remote endpoint and sets the picked back to the original on the handle (in our case CURLAUTH_ANY).

Patch below separates cleanup for endpoint and proxy so that clobbering doesn't happen.

----------------------------------------------------------------------

>Comment By: Daniel Stenberg (bagder)
Date: 2008-08-11 21:26

Message:
Logged In: YES
user_id=1110
Originator: NO

Thanks a lot, patched applied and committed to CVS just now!

----------------------------------------------------------------------

You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=100976&aid=2042440&group_id=976
Received on 2008-08-11