1069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project/* 2069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * $HeadURL: http://svn.apache.org/repos/asf/httpcomponents/httpclient/trunk/module-client/src/main/java/org/apache/http/impl/auth/DigestScheme.java $ 3069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * $Revision: 659595 $ 4069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * $Date: 2008-05-23 09:47:14 -0700 (Fri, 23 May 2008) $ 5069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 6069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * ==================================================================== 7069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 8069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Licensed to the Apache Software Foundation (ASF) under one or more 9069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * contributor license agreements. See the NOTICE file distributed with 10069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * this work for additional information regarding copyright ownership. 11069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * The ASF licenses this file to You under the Apache License, Version 2.0 12069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * (the "License"); you may not use this file except in compliance with 13069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * the License. You may obtain a copy of the License at 14069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 15069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * http://www.apache.org/licenses/LICENSE-2.0 16069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 17069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Unless required by applicable law or agreed to in writing, software 18069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * distributed under the License is distributed on an "AS IS" BASIS, 19069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 20069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * See the License for the specific language governing permissions and 21069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * limitations under the License. 22069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * ==================================================================== 23069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 24069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * This software consists of voluntary contributions made by many 25069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * individuals on behalf of the Apache Software Foundation. For more 26069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * information on the Apache Software Foundation, please see 27069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * <http://www.apache.org/>. 28069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 29069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 30069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 31069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectpackage org.apache.http.impl.auth; 32069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 33069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport java.security.MessageDigest; 34069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport java.util.ArrayList; 35069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport java.util.List; 36069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport java.util.StringTokenizer; 37069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 38069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.Header; 39069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.HttpRequest; 40069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.auth.AuthenticationException; 41069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.auth.Credentials; 42069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.auth.AUTH; 43069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.auth.MalformedChallengeException; 44069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.auth.params.AuthParams; 45069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.message.BasicNameValuePair; 46069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.message.BasicHeaderValueFormatter; 47069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.message.BufferedHeader; 48069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.util.CharArrayBuffer; 49069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectimport org.apache.http.util.EncodingUtils; 50069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 51069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project/** 52069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * <p> 53069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Digest authentication scheme as defined in RFC 2617. 54069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Both MD5 (default) and MD5-sess are supported. 55069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Currently only qop=auth or no qop is supported. qop=auth-int 56069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * is unsupported. If auth and auth-int are provided, auth is 57069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * used. 58069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * </p> 59069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * <p> 60069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Credential charset is configured via the 61069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * {@link org.apache.http.auth.params.AuthPNames#CREDENTIAL_CHARSET 62069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * credential charset} parameter. 63069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Since the digest username is included as clear text in the generated 64069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Authentication header, the charset of the username must be compatible 65069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * with the 66069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * {@link org.apache.http.params.CoreProtocolPNames#HTTP_ELEMENT_CHARSET 67069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * http element charset}. 68069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * </p> 69069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 70069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @author <a href="mailto:remm@apache.org">Remy Maucherat</a> 71069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @author Rodney Waldhoff 72069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @author <a href="mailto:jsdever@apache.org">Jeff Dever</a> 73069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @author Ortwin Glueck 74069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @author Sean C. Sullivan 75069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @author <a href="mailto:adrian@ephox.com">Adrian Sutton</a> 76069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @author <a href="mailto:mbowler@GargoyleSoftware.com">Mike Bowler</a> 77069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @author <a href="mailto:oleg at ural.ru">Oleg Kalnichevski</a> 78069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 79069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @since 4.0 80d42abb2fd917184764daf22f5f299e848b8701d7Narayan Kamath * 81d42abb2fd917184764daf22f5f299e848b8701d7Narayan Kamath * @deprecated Please use {@link java.net.URL#openConnection} instead. 82d42abb2fd917184764daf22f5f299e848b8701d7Narayan Kamath * Please visit <a href="http://android-developers.blogspot.com/2011/09/androids-http-clients.html">this webpage</a> 83d42abb2fd917184764daf22f5f299e848b8701d7Narayan Kamath * for further details. 84069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 85069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 86d42abb2fd917184764daf22f5f299e848b8701d7Narayan Kamath@Deprecated 87069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Projectpublic class DigestScheme extends RFC2617Scheme { 88069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 89069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 90069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Hexa values used when creating 32 character long digest in HTTP DigestScheme 91069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * in case of authentication. 92069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 93069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @see #encode(byte[]) 94069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 95069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private static final char[] HEXADECIMAL = { 96069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project '0', '1', '2', '3', '4', '5', '6', '7', '8', '9', 'a', 'b', 'c', 'd', 97069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 'e', 'f' 98069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project }; 99069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 100069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** Whether the digest authentication process is complete */ 101069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private boolean complete; 102069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 103069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project //TODO: supply a real nonce-count, currently a server will interprete a repeated request as a replay 104069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private static final String NC = "00000001"; //nonce-count is always 1 105069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private static final int QOP_MISSING = 0; 106069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private static final int QOP_AUTH_INT = 1; 107069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private static final int QOP_AUTH = 2; 108069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 109069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private int qopVariant = QOP_MISSING; 110069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private String cnonce; 111069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 112069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 113069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Default constructor for the digest authetication scheme. 114069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 115069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project public DigestScheme() { 116069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project super(); 117069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project this.complete = false; 118069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 119069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 120069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 121069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Processes the Digest challenge. 122069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 123069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @param header the challenge header 124069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 125069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @throws MalformedChallengeException is thrown if the authentication challenge 126069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * is malformed 127069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 128069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project @Override 129069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project public void processChallenge( 130069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project final Header header) throws MalformedChallengeException { 131069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project super.processChallenge(header); 132069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 133069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (getParameter("realm") == null) { 134069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new MalformedChallengeException("missing realm in challange"); 135069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 136069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (getParameter("nonce") == null) { 137069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new MalformedChallengeException("missing nonce in challange"); 138069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 139069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 140069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project boolean unsupportedQop = false; 141069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // qop parsing 142069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String qop = getParameter("qop"); 143069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (qop != null) { 144069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project StringTokenizer tok = new StringTokenizer(qop,","); 145069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project while (tok.hasMoreTokens()) { 146069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String variant = tok.nextToken().trim(); 147069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (variant.equals("auth")) { 148069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project qopVariant = QOP_AUTH; 149069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project break; //that's our favourite, because auth-int is unsupported 150069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } else if (variant.equals("auth-int")) { 151069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project qopVariant = QOP_AUTH_INT; 152069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } else { 153069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project unsupportedQop = true; 154069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 155069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 156069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 157069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 158069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (unsupportedQop && (qopVariant == QOP_MISSING)) { 159069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new MalformedChallengeException("None of the qop methods is supported"); 160069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 161069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // Reset cnonce 162069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project this.cnonce = null; 163069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project this.complete = true; 164069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 165069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 166069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 167069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Tests if the Digest authentication process has been completed. 168069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 169069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @return <tt>true</tt> if Digest authorization has been processed, 170069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * <tt>false</tt> otherwise. 171069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 172069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project public boolean isComplete() { 173069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String s = getParameter("stale"); 174069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if ("true".equalsIgnoreCase(s)) { 175069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return false; 176069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } else { 177069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return this.complete; 178069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 179069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 180069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 181069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 182069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Returns textual designation of the digest authentication scheme. 183069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 184069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @return <code>digest</code> 185069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 186069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project public String getSchemeName() { 187069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return "digest"; 188069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 189069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 190069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 191069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Returns <tt>false</tt>. Digest authentication scheme is request based. 192069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 193069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @return <tt>false</tt>. 194069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 195069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project public boolean isConnectionBased() { 196069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return false; 197069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 198069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 199069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project public void overrideParamter(final String name, final String value) { 200069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project getParameters().put(name, value); 201069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 202069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 203069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private String getCnonce() { 204069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (this.cnonce == null) { 205069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project this.cnonce = createCnonce(); 206069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 207069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return this.cnonce; 208069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 209069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 210069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 211069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Produces a digest authorization string for the given set of 212069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * {@link Credentials}, method name and URI. 213069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 214069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @param credentials A set of credentials to be used for athentication 215069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @param request The request being authenticated 216069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 217069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @throws org.apache.http.auth.InvalidCredentialsException if authentication credentials 218069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * are not valid or not applicable for this authentication scheme 219069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @throws AuthenticationException if authorization string cannot 220069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * be generated due to an authentication failure 221069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 222069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @return a digest authorization string 223069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 224069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project public Header authenticate( 225069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project final Credentials credentials, 226069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project final HttpRequest request) throws AuthenticationException { 227069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 228069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (credentials == null) { 229069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new IllegalArgumentException("Credentials may not be null"); 230069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 231069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (request == null) { 232069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new IllegalArgumentException("HTTP request may not be null"); 233069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 234069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 235069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // Add method name and request-URI to the parameter map 236069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project getParameters().put("methodname", request.getRequestLine().getMethod()); 237069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project getParameters().put("uri", request.getRequestLine().getUri()); 238069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String charset = getParameter("charset"); 239069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (charset == null) { 240069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project charset = AuthParams.getCredentialCharset(request.getParams()); 241069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project getParameters().put("charset", charset); 242069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 243069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String digest = createDigest(credentials); 244069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return createDigestHeader(credentials, digest); 245069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 246069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 247069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private static MessageDigest createMessageDigest( 248069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project final String digAlg) throws UnsupportedDigestAlgorithmException { 249069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project try { 250069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return MessageDigest.getInstance(digAlg); 251069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } catch (Exception e) { 252069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new UnsupportedDigestAlgorithmException( 253069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project "Unsupported algorithm in HTTP Digest authentication: " 254069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project + digAlg); 255069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 256069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 257069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 258069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 259069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Creates an MD5 response digest. 260069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 261069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @return The created digest as string. This will be the response tag's 262069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * value in the Authentication HTTP header. 263069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @throws AuthenticationException when MD5 is an unsupported algorithm 264069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 265069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private String createDigest(final Credentials credentials) throws AuthenticationException { 266069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // Collecting required tokens 267069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String uri = getParameter("uri"); 268069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String realm = getParameter("realm"); 269069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String nonce = getParameter("nonce"); 270069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String method = getParameter("methodname"); 271069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String algorithm = getParameter("algorithm"); 272069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (uri == null) { 273069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new IllegalStateException("URI may not be null"); 274069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 275069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (realm == null) { 276069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new IllegalStateException("Realm may not be null"); 277069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 278069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (nonce == null) { 279069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new IllegalStateException("Nonce may not be null"); 280069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 281069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // If an algorithm is not specified, default to MD5. 282069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (algorithm == null) { 283069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project algorithm = "MD5"; 284069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 285069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // If an charset is not specified, default to ISO-8859-1. 286069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String charset = getParameter("charset"); 287069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (charset == null) { 288069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project charset = "ISO-8859-1"; 289069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 290069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 291069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (qopVariant == QOP_AUTH_INT) { 292069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new AuthenticationException( 293069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project "Unsupported qop in HTTP Digest authentication"); 294069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 295069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 296069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project MessageDigest md5Helper = createMessageDigest("MD5"); 297069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 298069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String uname = credentials.getUserPrincipal().getName(); 299069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String pwd = credentials.getPassword(); 300069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 301069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // 3.2.2.2: Calculating digest 302069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project StringBuilder tmp = new StringBuilder(uname.length() + realm.length() + pwd.length() + 2); 303069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp.append(uname); 304069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp.append(':'); 305069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp.append(realm); 306069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp.append(':'); 307069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp.append(pwd); 308069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // unq(username-value) ":" unq(realm-value) ":" passwd 309069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String a1 = tmp.toString(); 310069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 311069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project //a1 is suitable for MD5 algorithm 312ecb99be7d30d406868ec50c90be6e12a332c6c2dJesse Wilson if(algorithm.equalsIgnoreCase("MD5-sess")) { // android-changed: ignore case 313069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // H( unq(username-value) ":" unq(realm-value) ":" passwd ) 314069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // ":" unq(nonce-value) 315069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // ":" unq(cnonce-value) 316069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 317069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String cnonce = getCnonce(); 318069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 319069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String tmp2=encode(md5Helper.digest(EncodingUtils.getBytes(a1, charset))); 320069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project StringBuilder tmp3 = new StringBuilder(tmp2.length() + nonce.length() + cnonce.length() + 2); 321069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp3.append(tmp2); 322069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp3.append(':'); 323069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp3.append(nonce); 324069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp3.append(':'); 325069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp3.append(cnonce); 326069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project a1 = tmp3.toString(); 327ecb99be7d30d406868ec50c90be6e12a332c6c2dJesse Wilson } else if (!algorithm.equalsIgnoreCase("MD5")) { // android-changed: ignore case 328069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project throw new AuthenticationException("Unhandled algorithm " + algorithm + " requested"); 329069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 330069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String md5a1 = encode(md5Helper.digest(EncodingUtils.getBytes(a1, charset))); 331069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 332069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String a2 = null; 333069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (qopVariant == QOP_AUTH_INT) { 334069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // Unhandled qop auth-int 335069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project //we do not have access to the entity-body or its hash 336069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project //TODO: add Method ":" digest-uri-value ":" H(entity-body) 337069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } else { 338069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project a2 = method + ':' + uri; 339069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 340069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String md5a2 = encode(md5Helper.digest(EncodingUtils.getAsciiBytes(a2))); 341069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 342069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project // 3.2.2.1 343069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String serverDigestValue; 344069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (qopVariant == QOP_MISSING) { 345069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project StringBuilder tmp2 = new StringBuilder(md5a1.length() + nonce.length() + md5a2.length()); 346069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(md5a1); 347069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(':'); 348069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(nonce); 349069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(':'); 350069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(md5a2); 351069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project serverDigestValue = tmp2.toString(); 352069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } else { 353069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String qopOption = getQopVariantString(); 354069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String cnonce = getCnonce(); 355069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 356069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project StringBuilder tmp2 = new StringBuilder(md5a1.length() + nonce.length() 357069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project + NC.length() + cnonce.length() + qopOption.length() + md5a2.length() + 5); 358069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(md5a1); 359069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(':'); 360069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(nonce); 361069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(':'); 362069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(NC); 363069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(':'); 364069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(cnonce); 365069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(':'); 366069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(qopOption); 367069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(':'); 368069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project tmp2.append(md5a2); 369069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project serverDigestValue = tmp2.toString(); 370069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 371069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 372069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String serverDigest = 373069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project encode(md5Helper.digest(EncodingUtils.getAsciiBytes(serverDigestValue))); 374069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 375069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return serverDigest; 376069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 377069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 378069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 379069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Creates digest-response header as defined in RFC2617. 380069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 381069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @param credentials User credentials 382069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @param digest The response tag's value as String. 383069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 384069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @return The digest-response as String. 385069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 386069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private Header createDigestHeader( 387069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project final Credentials credentials, 388069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project final String digest) throws AuthenticationException { 389069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 390069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project CharArrayBuffer buffer = new CharArrayBuffer(128); 391069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (isProxy()) { 392069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project buffer.append(AUTH.PROXY_AUTH_RESP); 393069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } else { 394069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project buffer.append(AUTH.WWW_AUTH_RESP); 395069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 396069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project buffer.append(": Digest "); 397069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 398069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String uri = getParameter("uri"); 399069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String realm = getParameter("realm"); 400069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String nonce = getParameter("nonce"); 401069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String opaque = getParameter("opaque"); 402069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String response = digest; 403069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String algorithm = getParameter("algorithm"); 404069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 405069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String uname = credentials.getUserPrincipal().getName(); 406069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 407069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project List<BasicNameValuePair> params = new ArrayList<BasicNameValuePair>(20); 408069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("username", uname)); 409069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("realm", realm)); 410069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("nonce", nonce)); 411069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("uri", uri)); 412069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("response", response)); 413069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 414069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (qopVariant != QOP_MISSING) { 415069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("qop", getQopVariantString())); 416069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("nc", NC)); 417069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("cnonce", getCnonce())); 418069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 419069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (algorithm != null) { 420069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("algorithm", algorithm)); 421069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 422069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (opaque != null) { 423069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project params.add(new BasicNameValuePair("opaque", opaque)); 424069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 425069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 426069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project for (int i = 0; i < params.size(); i++) { 427069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project BasicNameValuePair param = params.get(i); 428069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (i > 0) { 429069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project buffer.append(", "); 430069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 431069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project boolean noQuotes = "nc".equals(param.getName()) || 432069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project "qop".equals(param.getName()); 433069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project BasicHeaderValueFormatter.DEFAULT 434069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project .formatNameValuePair(buffer, param, !noQuotes); 435069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 436069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return new BufferedHeader(buffer); 437069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 438069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 439069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private String getQopVariantString() { 440069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String qopOption; 441069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (qopVariant == QOP_AUTH_INT) { 442069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project qopOption = "auth-int"; 443069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } else { 444069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project qopOption = "auth"; 445069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 446069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return qopOption; 447069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 448069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 449069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 450069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Encodes the 128 bit (16 bytes) MD5 digest into a 32 characters long 451069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * <CODE>String</CODE> according to RFC 2617. 452069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 453069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @param binaryData array containing the digest 454069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @return encoded MD5, or <CODE>null</CODE> if encoding failed 455069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 456069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project private static String encode(byte[] binaryData) { 457069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project if (binaryData.length != 16) { 458069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return null; 459069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 460069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 461069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project char[] buffer = new char[32]; 462069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project for (int i = 0; i < 16; i++) { 463069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project int low = (binaryData[i] & 0x0f); 464069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project int high = ((binaryData[i] & 0xf0) >> 4); 465069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project buffer[i * 2] = HEXADECIMAL[high]; 466069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project buffer[(i * 2) + 1] = HEXADECIMAL[low]; 467069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 468069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 469069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return new String(buffer); 470069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 471069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 472069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 473069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project /** 474069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * Creates a random cnonce value based on the current time. 475069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * 476069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @return The cnonce value as String. 477069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project * @throws UnsupportedDigestAlgorithmException if MD5 algorithm is not supported. 478069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project */ 479069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project public static String createCnonce() { 480069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project String cnonce; 481069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 482069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project MessageDigest md5Helper = createMessageDigest("MD5"); 483069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 484069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project cnonce = Long.toString(System.currentTimeMillis()); 485069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project cnonce = encode(md5Helper.digest(EncodingUtils.getAsciiBytes(cnonce))); 486069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project 487069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project return cnonce; 488069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project } 489069490a5ca2fd1988d29daf45d892f47ad665115The Android Open Source Project} 490