1069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project/* 2069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * $HeadURL: http://svn.apache.org/repos/asf/httpcomponents/httpclient/trunk/module-client/src/main/java/org/apache/http/impl/auth/DigestScheme.java $ 3069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * $Revision: 659595 $ 4069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * $Date: 2008-05-23 09:47:14 -0700 (Fri, 23 May 2008) $ 5069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 6069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * ==================================================================== 7069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 8069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Licensed to the Apache Software Foundation (ASF) under one or more 9069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * contributor license agreements. See the NOTICE file distributed with 10069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * this work for additional information regarding copyright ownership. 11069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * The ASF licenses this file to You under the Apache License, Version 2.0 12069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * (the "License"); you may not use this file except in compliance with 13069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * the License. You may obtain a copy of the License at 14069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 15069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * http://www.apache.org/licenses/LICENSE-2.0 16069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 17069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Unless required by applicable law or agreed to in writing, software 18069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * distributed under the License is distributed on an "AS IS" BASIS, 19069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 20069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * See the License for the specific language governing permissions and 21069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * limitations under the License. 22069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * ==================================================================== 23069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 24069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * This software consists of voluntary contributions made by many 25069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * individuals on behalf of the Apache Software Foundation. For more 26069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * information on the Apache Software Foundation, please see 27069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * <http://www.apache.org/>. 28069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 29069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 30069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 31069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectpackage org.apache.http.impl.auth; 32069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 33069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport java.security.MessageDigest; 34069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport java.util.ArrayList; 35069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport java.util.List; 36069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport java.util.StringTokenizer; 37069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 38069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.Header; 39069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.HttpRequest; 40069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.auth.AuthenticationException; 41069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.auth.Credentials; 42069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.auth.AUTH; 43069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.auth.MalformedChallengeException; 44069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.auth.params.AuthParams; 45069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.message.BasicNameValuePair; 46069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.message.BasicHeaderValueFormatter; 47069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.message.BufferedHeader; 48069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.util.CharArrayBuffer; 49069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.util.EncodingUtils; 50069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 51069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project/** 52069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * <p> 53069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Digest authentication scheme as defined in RFC 2617. 54069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Both MD5 (default) and MD5-sess are supported. 55069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Currently only qop=auth or no qop is supported. qop=auth-int 56069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * is unsupported. If auth and auth-int are provided, auth is 57069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * used. 58069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * </p> 59069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * <p> 60069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Credential charset is configured via the 61069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * {@link org.apache.http.auth.params.AuthPNames#CREDENTIAL_CHARSET 62069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * credential charset} parameter. 63069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Since the digest username is included as clear text in the generated 64069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Authentication header, the charset of the username must be compatible 65069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * with the 66069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * {@link org.apache.http.params.CoreProtocolPNames#HTTP_ELEMENT_CHARSET 67069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * http element charset}. 68069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * </p> 69069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 70069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @author <a href="mailto:remm@apache.org">Remy Maucherat</a> 71069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @author Rodney Waldhoff 72069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @author <a href="mailto:jsdever@apache.org">Jeff Dever</a> 73069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @author Ortwin Glueck 74069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @author Sean C. Sullivan 75069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @author <a href="mailto:adrian@ephox.com">Adrian Sutton</a> 76069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @author <a href="mailto:mbowler@GargoyleSoftware.com">Mike Bowler</a> 77069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @author <a href="mailto:oleg at ural.ru">Oleg Kalnichevski</a> 78069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 79069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @since 4.0 80069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 81069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 82069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectpublic class DigestScheme extends RFC2617Scheme { 83069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 84069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 85069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Hexa values used when creating 32 character long digest in HTTP DigestScheme 86069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * in case of authentication. 87069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 88069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @see #encode(byte[]) 89069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 90069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private static final char[] HEXADECIMAL = { 91069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project '0', '1', '2', '3', '4', '5', '6', '7', '8', '9', 'a', 'b', 'c', 'd', 92069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 'e', 'f' 93069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project }; 94069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 95069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** Whether the digest authentication process is complete */ 96069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private boolean complete; 97069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 98069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project //TODO: supply a real nonce-count, currently a server will interprete a repeated request as a replay 99069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private static final String NC = "00000001"; //nonce-count is always 1 100069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private static final int QOP_MISSING = 0; 101069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private static final int QOP_AUTH_INT = 1; 102069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private static final int QOP_AUTH = 2; 103069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 104069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private int qopVariant = QOP_MISSING; 105069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private String cnonce; 106069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 107069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 108069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Default constructor for the digest authetication scheme. 109069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 110069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project public DigestScheme() { 111069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project super(); 112069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project this.complete = false; 113069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 114069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 115069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 116069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Processes the Digest challenge. 117069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 118069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @param header the challenge header 119069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 120069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @throws MalformedChallengeException is thrown if the authentication challenge 121069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * is malformed 122069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 123069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project @Override 124069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project public void processChallenge( 125069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project final Header header) throws MalformedChallengeException { 126069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project super.processChallenge(header); 127069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 128069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (getParameter("realm") == null) { 129069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new MalformedChallengeException("missing realm in challange"); 130069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 131069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (getParameter("nonce") == null) { 132069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new MalformedChallengeException("missing nonce in challange"); 133069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 134069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 135069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project boolean unsupportedQop = false; 136069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // qop parsing 137069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String qop = getParameter("qop"); 138069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (qop != null) { 139069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project StringTokenizer tok = new StringTokenizer(qop,","); 140069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project while (tok.hasMoreTokens()) { 141069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String variant = tok.nextToken().trim(); 142069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (variant.equals("auth")) { 143069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project qopVariant = QOP_AUTH; 144069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project break; //that's our favourite, because auth-int is unsupported 145069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } else if (variant.equals("auth-int")) { 146069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project qopVariant = QOP_AUTH_INT; 147069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } else { 148069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project unsupportedQop = true; 149069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 150069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 151069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 152069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 153069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (unsupportedQop && (qopVariant == QOP_MISSING)) { 154069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new MalformedChallengeException("None of the qop methods is supported"); 155069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 156069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // Reset cnonce 157069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project this.cnonce = null; 158069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project this.complete = true; 159069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 160069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 161069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 162069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Tests if the Digest authentication process has been completed. 163069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 164069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @return <tt>true</tt> if Digest authorization has been processed, 165069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * <tt>false</tt> otherwise. 166069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 167069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project public boolean isComplete() { 168069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String s = getParameter("stale"); 169069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if ("true".equalsIgnoreCase(s)) { 170069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return false; 171069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } else { 172069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return this.complete; 173069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 174069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 175069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 176069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 177069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Returns textual designation of the digest authentication scheme. 178069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 179069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @return <code>digest</code> 180069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 181069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project public String getSchemeName() { 182069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return "digest"; 183069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 184069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 185069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 186069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Returns <tt>false</tt>. Digest authentication scheme is request based. 187069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 188069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @return <tt>false</tt>. 189069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 190069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project public boolean isConnectionBased() { 191069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return false; 192069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 193069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 194069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project public void overrideParamter(final String name, final String value) { 195069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project getParameters().put(name, value); 196069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 197069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 198069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private String getCnonce() { 199069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (this.cnonce == null) { 200069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project this.cnonce = createCnonce(); 201069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 202069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return this.cnonce; 203069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 204069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 205069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 206069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Produces a digest authorization string for the given set of 207069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * {@link Credentials}, method name and URI. 208069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 209069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @param credentials A set of credentials to be used for athentication 210069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @param request The request being authenticated 211069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 212069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @throws org.apache.http.auth.InvalidCredentialsException if authentication credentials 213069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * are not valid or not applicable for this authentication scheme 214069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @throws AuthenticationException if authorization string cannot 215069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * be generated due to an authentication failure 216069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 217069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @return a digest authorization string 218069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 219069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project public Header authenticate( 220069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project final Credentials credentials, 221069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project final HttpRequest request) throws AuthenticationException { 222069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 223069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (credentials == null) { 224069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new IllegalArgumentException("Credentials may not be null"); 225069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 226069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (request == null) { 227069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new IllegalArgumentException("HTTP request may not be null"); 228069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 229069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 230069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // Add method name and request-URI to the parameter map 231069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project getParameters().put("methodname", request.getRequestLine().getMethod()); 232069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project getParameters().put("uri", request.getRequestLine().getUri()); 233069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String charset = getParameter("charset"); 234069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (charset == null) { 235069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project charset = AuthParams.getCredentialCharset(request.getParams()); 236069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project getParameters().put("charset", charset); 237069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 238069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String digest = createDigest(credentials); 239069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return createDigestHeader(credentials, digest); 240069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 241069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 242069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private static MessageDigest createMessageDigest( 243069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project final String digAlg) throws UnsupportedDigestAlgorithmException { 244069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project try { 245069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return MessageDigest.getInstance(digAlg); 246069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } catch (Exception e) { 247069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new UnsupportedDigestAlgorithmException( 248069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project "Unsupported algorithm in HTTP Digest authentication: " 249069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project + digAlg); 250069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 251069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 252069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 253069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 254069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Creates an MD5 response digest. 255069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 256069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @return The created digest as string. This will be the response tag's 257069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * value in the Authentication HTTP header. 258069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @throws AuthenticationException when MD5 is an unsupported algorithm 259069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 260069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private String createDigest(final Credentials credentials) throws AuthenticationException { 261069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // Collecting required tokens 262069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String uri = getParameter("uri"); 263069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String realm = getParameter("realm"); 264069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String nonce = getParameter("nonce"); 265069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String method = getParameter("methodname"); 266069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String algorithm = getParameter("algorithm"); 267069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (uri == null) { 268069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new IllegalStateException("URI may not be null"); 269069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 270069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (realm == null) { 271069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new IllegalStateException("Realm may not be null"); 272069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 273069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (nonce == null) { 274069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new IllegalStateException("Nonce may not be null"); 275069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 276069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // If an algorithm is not specified, default to MD5. 277069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (algorithm == null) { 278069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project algorithm = "MD5"; 279069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 280069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // If an charset is not specified, default to ISO-8859-1. 281069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String charset = getParameter("charset"); 282069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (charset == null) { 283069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project charset = "ISO-8859-1"; 284069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 285069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 286069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (qopVariant == QOP_AUTH_INT) { 287069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new AuthenticationException( 288069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project "Unsupported qop in HTTP Digest authentication"); 289069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 290069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 291069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project MessageDigest md5Helper = createMessageDigest("MD5"); 292069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 293069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String uname = credentials.getUserPrincipal().getName(); 294069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String pwd = credentials.getPassword(); 295069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 296069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // 3.2.2.2: Calculating digest 297069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project StringBuilder tmp = new StringBuilder(uname.length() + realm.length() + pwd.length() + 2); 298069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp.append(uname); 299069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp.append(':'); 300069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp.append(realm); 301069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp.append(':'); 302069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp.append(pwd); 303069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // unq(username-value) ":" unq(realm-value) ":" passwd 304069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String a1 = tmp.toString(); 305069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 306069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project //a1 is suitable for MD5 algorithm 307ecb99be7d30d406868ec50c90be6e12a332c6c2dJesse Wilson if(algorithm.equalsIgnoreCase("MD5-sess")) { // android-changed: ignore case 308069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // H( unq(username-value) ":" unq(realm-value) ":" passwd ) 309069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // ":" unq(nonce-value) 310069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // ":" unq(cnonce-value) 311069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 312069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String cnonce = getCnonce(); 313069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 314069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String tmp2=encode(md5Helper.digest(EncodingUtils.getBytes(a1, charset))); 315069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project StringBuilder tmp3 = new StringBuilder(tmp2.length() + nonce.length() + cnonce.length() + 2); 316069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp3.append(tmp2); 317069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp3.append(':'); 318069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp3.append(nonce); 319069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp3.append(':'); 320069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp3.append(cnonce); 321069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project a1 = tmp3.toString(); 322ecb99be7d30d406868ec50c90be6e12a332c6c2dJesse Wilson } else if (!algorithm.equalsIgnoreCase("MD5")) { // android-changed: ignore case 323069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new AuthenticationException("Unhandled algorithm " + algorithm + " requested"); 324069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 325069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String md5a1 = encode(md5Helper.digest(EncodingUtils.getBytes(a1, charset))); 326069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 327069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String a2 = null; 328069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (qopVariant == QOP_AUTH_INT) { 329069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // Unhandled qop auth-int 330069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project //we do not have access to the entity-body or its hash 331069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project //TODO: add Method ":" digest-uri-value ":" H(entity-body) 332069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } else { 333069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project a2 = method + ':' + uri; 334069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 335069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String md5a2 = encode(md5Helper.digest(EncodingUtils.getAsciiBytes(a2))); 336069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 337069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // 3.2.2.1 338069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String serverDigestValue; 339069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (qopVariant == QOP_MISSING) { 340069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project StringBuilder tmp2 = new StringBuilder(md5a1.length() + nonce.length() + md5a2.length()); 341069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(md5a1); 342069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(':'); 343069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(nonce); 344069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(':'); 345069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(md5a2); 346069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project serverDigestValue = tmp2.toString(); 347069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } else { 348069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String qopOption = getQopVariantString(); 349069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String cnonce = getCnonce(); 350069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 351069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project StringBuilder tmp2 = new StringBuilder(md5a1.length() + nonce.length() 352069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project + NC.length() + cnonce.length() + qopOption.length() + md5a2.length() + 5); 353069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(md5a1); 354069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(':'); 355069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(nonce); 356069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(':'); 357069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(NC); 358069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(':'); 359069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(cnonce); 360069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(':'); 361069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(qopOption); 362069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(':'); 363069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(md5a2); 364069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project serverDigestValue = tmp2.toString(); 365069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 366069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 367069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String serverDigest = 368069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project encode(md5Helper.digest(EncodingUtils.getAsciiBytes(serverDigestValue))); 369069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 370069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return serverDigest; 371069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 372069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 373069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 374069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Creates digest-response header as defined in RFC2617. 375069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 376069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @param credentials User credentials 377069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @param digest The response tag's value as String. 378069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 379069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @return The digest-response as String. 380069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 381069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private Header createDigestHeader( 382069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project final Credentials credentials, 383069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project final String digest) throws AuthenticationException { 384069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 385069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project CharArrayBuffer buffer = new CharArrayBuffer(128); 386069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (isProxy()) { 387069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project buffer.append(AUTH.PROXY_AUTH_RESP); 388069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } else { 389069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project buffer.append(AUTH.WWW_AUTH_RESP); 390069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 391069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project buffer.append(": Digest "); 392069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 393069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String uri = getParameter("uri"); 394069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String realm = getParameter("realm"); 395069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String nonce = getParameter("nonce"); 396069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String opaque = getParameter("opaque"); 397069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String response = digest; 398069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String algorithm = getParameter("algorithm"); 399069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 400069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String uname = credentials.getUserPrincipal().getName(); 401069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 402069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project List<BasicNameValuePair> params = new ArrayList<BasicNameValuePair>(20); 403069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("username", uname)); 404069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("realm", realm)); 405069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("nonce", nonce)); 406069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("uri", uri)); 407069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("response", response)); 408069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 409069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (qopVariant != QOP_MISSING) { 410069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("qop", getQopVariantString())); 411069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("nc", NC)); 412069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("cnonce", getCnonce())); 413069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 414069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (algorithm != null) { 415069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("algorithm", algorithm)); 416069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 417069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (opaque != null) { 418069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("opaque", opaque)); 419069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 420069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 421069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project for (int i = 0; i < params.size(); i++) { 422069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project BasicNameValuePair param = params.get(i); 423069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (i > 0) { 424069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project buffer.append(", "); 425069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 426069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project boolean noQuotes = "nc".equals(param.getName()) || 427069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project "qop".equals(param.getName()); 428069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project BasicHeaderValueFormatter.DEFAULT 429069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project .formatNameValuePair(buffer, param, !noQuotes); 430069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 431069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return new BufferedHeader(buffer); 432069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 433069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 434069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private String getQopVariantString() { 435069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String qopOption; 436069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (qopVariant == QOP_AUTH_INT) { 437069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project qopOption = "auth-int"; 438069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } else { 439069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project qopOption = "auth"; 440069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 441069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return qopOption; 442069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 443069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 444069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 445069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Encodes the 128 bit (16 bytes) MD5 digest into a 32 characters long 446069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * <CODE>String</CODE> according to RFC 2617. 447069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 448069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @param binaryData array containing the digest 449069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @return encoded MD5, or <CODE>null</CODE> if encoding failed 450069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 451069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private static String encode(byte[] binaryData) { 452069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (binaryData.length != 16) { 453069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return null; 454069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 455069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 456069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project char[] buffer = new char[32]; 457069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project for (int i = 0; i < 16; i++) { 458069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project int low = (binaryData[i] & 0x0f); 459069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project int high = ((binaryData[i] & 0xf0) >> 4); 460069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project buffer[i * 2] = HEXADECIMAL[high]; 461069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project buffer[(i * 2) + 1] = HEXADECIMAL[low]; 462069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 463069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 464069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return new String(buffer); 465069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 466069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 467069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 468069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 469069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Creates a random cnonce value based on the current time. 470069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 471069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @return The cnonce value as String. 472069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @throws UnsupportedDigestAlgorithmException if MD5 algorithm is not supported. 473069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 474069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project public static String createCnonce() { 475069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String cnonce; 476069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 477069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project MessageDigest md5Helper = createMessageDigest("MD5"); 478069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 479069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project cnonce = Long.toString(System.currentTimeMillis()); 480069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project cnonce = encode(md5Helper.digest(EncodingUtils.getAsciiBytes(cnonce))); 481069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 482069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return cnonce; 483069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 484069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project} 485