123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280 |
- using System;
- using System.Collections.Generic;
- namespace BestHTTP.Authentication
- {
- using BestHTTP.Extensions;
- using System.Text;
-
-
-
-
- public sealed class Digest
- {
- #region Public Properties
-
-
-
- public Uri Uri { get; private set; }
- public AuthenticationTypes Type { get; private set; }
-
-
-
-
- public string Realm { get; private set; }
-
-
-
-
-
-
-
- public bool Stale { get; private set; }
- #endregion
- #region Private Properties
-
-
-
-
- private string Nonce { get; set; }
-
-
-
-
- private string Opaque { get; set; }
-
-
-
-
- private string Algorithm { get; set; }
-
-
-
-
-
-
-
-
- public List<string> ProtectedUris { get; private set; }
-
-
-
-
- private string QualityOfProtections { get; set; }
-
-
-
-
- private int NonceCount { get; set; }
-
-
-
- private string HA1Sess { get; set; }
- #endregion
- internal Digest(Uri uri)
- {
- this.Uri = uri;
- this.Algorithm = "md5";
- }
-
-
-
- public void ParseChallange(string header)
- {
-
- this.Type = AuthenticationTypes.Unknown;
- this.Stale = false;
- this.Opaque = null;
- this.HA1Sess = null;
- this.NonceCount = 0;
- this.QualityOfProtections = null;
- if (this.ProtectedUris != null)
- this.ProtectedUris.Clear();
-
- WWWAuthenticateHeaderParser qpl = new WWWAuthenticateHeaderParser(header);
-
- foreach (var qp in qpl.Values)
- switch (qp.Key)
- {
- case "basic": this.Type = AuthenticationTypes.Basic; break;
- case "digest": this.Type = AuthenticationTypes.Digest; break;
- case "realm": this.Realm = qp.Value; break;
- case "domain":
- {
- if (string.IsNullOrEmpty(qp.Value) || qp.Value.Length == 0)
- break;
- if (this.ProtectedUris == null)
- this.ProtectedUris = new List<string>();
- int idx = 0;
- string val = qp.Value.Read(ref idx, ' ');
- do
- {
- this.ProtectedUris.Add(val);
- val = qp.Value.Read(ref idx, ' ');
- } while (idx < qp.Value.Length);
- break;
- }
- case "nonce": this.Nonce = qp.Value; break;
- case "qop": this.QualityOfProtections = qp.Value; break;
- case "stale": this.Stale = bool.Parse(qp.Value); break;
- case "opaque": this.Opaque = qp.Value; break;
- case "algorithm": this.Algorithm = qp.Value; break;
- }
- }
-
-
-
- public string GenerateResponseHeader(HTTPRequest request, Credentials credentials, bool isProxy = false)
- {
- try
- {
- switch (Type)
- {
- case AuthenticationTypes.Basic:
- return string.Concat("Basic ", Convert.ToBase64String(Encoding.UTF8.GetBytes(string.Format("{0}:{1}", credentials.UserName, credentials.Password))));
- case AuthenticationTypes.Digest:
- {
- NonceCount++;
- string HA1 = string.Empty;
-
-
- string cnonce = new System.Random(request.GetHashCode()).Next(int.MinValue, int.MaxValue).ToString("X8");
- string ncvalue = NonceCount.ToString("X8");
- switch (Algorithm.TrimAndLower())
- {
- case "md5":
- HA1 = string.Format("{0}:{1}:{2}", credentials.UserName, Realm, credentials.Password).CalculateMD5Hash();
- break;
- case "md5-sess":
- if (string.IsNullOrEmpty(this.HA1Sess))
- this.HA1Sess = string.Format("{0}:{1}:{2}:{3}:{4}", credentials.UserName, Realm, credentials.Password, Nonce, ncvalue).CalculateMD5Hash();
- HA1 = this.HA1Sess;
- break;
- default:
- return string.Empty;
- }
-
- string response = string.Empty;
-
-
-
- string qop = this.QualityOfProtections != null ? this.QualityOfProtections.TrimAndLower() : null;
-
-
- string method = isProxy ? "CONNECT" : request.MethodType.ToString().ToUpper();
-
-
- string uri = isProxy ? request.CurrentUri.Host + ":" + request.CurrentUri.Port : request.CurrentUri.GetRequestPathAndQueryURL();
- if (qop == null)
- {
- string HA2 = string.Concat(request.MethodType.ToString().ToUpper(), ":", request.CurrentUri.GetRequestPathAndQueryURL()).CalculateMD5Hash();
- response = string.Format("{0}:{1}:{2}", HA1, Nonce, HA2).CalculateMD5Hash();
- }
- else if (qop.Contains("auth-int"))
- {
- qop = "auth-int";
- byte[] entityBody = request.GetEntityBody();
- if (entityBody == null)
- entityBody = string.Empty.GetASCIIBytes();
- string HA2 = string.Format("{0}:{1}:{2}", method, uri, entityBody.CalculateMD5Hash()).CalculateMD5Hash();
- response = string.Format("{0}:{1}:{2}:{3}:{4}:{5}", HA1, Nonce, ncvalue, cnonce, qop, HA2).CalculateMD5Hash();
- }
- else if (qop.Contains("auth"))
- {
- qop = "auth";
- string HA2 = string.Concat(method, ":", uri).CalculateMD5Hash();
- response = string.Format("{0}:{1}:{2}:{3}:{4}:{5}", HA1, Nonce, ncvalue, cnonce, qop, HA2).CalculateMD5Hash();
- }
- else
- return string.Empty;
- string result = string.Format("Digest username=\"{0}\", realm=\"{1}\", nonce=\"{2}\", uri=\"{3}\", cnonce=\"{4}\", response=\"{5}\"",
- credentials.UserName, Realm, Nonce, uri, cnonce, response);
- if (qop != null)
- result += String.Concat(", qop=\"", qop, "\", nc=", ncvalue);
- if (!string.IsNullOrEmpty(Opaque))
- result = String.Concat(result, ", opaque=\"", Opaque, "\"");
- return result;
- }
- default:
- break;
- }
- }
- catch
- {
- }
- return string.Empty;
- }
- public bool IsUriProtected(Uri uri)
- {
-
-
-
-
-
-
-
-
-
- if (string.CompareOrdinal(uri.Host, this.Uri.Host) != 0)
- return false;
- string uriStr = uri.ToString();
- if (ProtectedUris != null && ProtectedUris.Count > 0)
- for (int i = 0; i < ProtectedUris.Count; ++i)
- if (uriStr.Contains(ProtectedUris[i]))
- return true;
- return true;
- }
- }
- }
|