Simon, Thanks. I guess our users have been working with forgiving servers thus far.
Scott Nichol ----- Original Message ----- From: "Simon Fell" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, August 01, 2002 12:39 AM Subject: Re: cvs commit: xml-soap/java/src/org/apache/soap/util/net SSLUtils.java FYI, there's some bugs in this, all the HTTP header line endings should be \r\n not just \n Cheers Simon On 1 Aug 2002 03:07:32 -0000, in soap you wrote: >snichol 2002/07/31 20:07:32 > > Modified: java/docs changes.html > java/src/org/apache/soap/util/net SSLUtils.java > Log: > Submitted by: Phil Bohnenkamp <[EMAIL PROTECTED]> > Reviewed by: Scott Nichol > > The attached modified class is to add support for https tunneling through > a proxy that requires authentication. Although tunneling that requires > authentication works with http, it didn't for https. > > After sniffing around, I found that the standard system property for the > authentication string to pass to the proxy is https.proxyAuth. This > authentication string format is defined in the > "HTTP Authentication: Basic and Digest Access Authentication" specification > found at ftp://ftp.isi.edu/in-notes/rfc2617.txt. If https.proxyAuth is not > found it assumes proxy authentication is not required. > > Revision Changes Path > 1.35 +1 -0 xml-soap/java/docs/changes.html > > Index: changes.html > =================================================================== > RCS file: /home/cvs/xml-soap/java/docs/changes.html,v > retrieving revision 1.34 > retrieving revision 1.35 > diff -u -r1.34 -r1.35 > --- changes.html 30 Jul 2002 20:32:04 -0000 1.34 > +++ changes.html 1 Aug 2002 03:07:32 -0000 1.35 > @@ -53,6 +53,7 @@ > This dramatically decreases latency when the payload is smaller > than the TCP segment size, assuming the server platform uses > a long delayed ACK timer (typically 200 ms).</li> > + <li>Support authentication for https proxies.</li> > </ul> > </li> > <li><A name="v2.3.1"><STRONG>Version 2.3.1</STRONG></A> > > > > 1.5 +30 -5 xml-soap/java/src/org/apache/soap/util/net/SSLUtils.java > > Index: SSLUtils.java > =================================================================== > RCS file: /home/cvs/xml-soap/java/src/org/apache/soap/util/net/SSLUtils.java,v > retrieving revision 1.4 > retrieving revision 1.5 > diff -u -r1.4 -r1.5 > --- SSLUtils.java 21 Aug 2001 19:22:35 -0000 1.4 > +++ SSLUtils.java 1 Aug 2002 03:07:32 -0000 1.5 > @@ -67,6 +67,7 @@ > * A bunch of utility stuff for doing SSL things. > * > * @author Chris Nelson ([EMAIL PROTECTED]) > + * @author Phil Bohnenkamp ([EMAIL PROTECTED]) > */ > public class SSLUtils { > static String tunnelHost; > @@ -135,11 +136,34 @@ > static private void doTunnelHandshake(Socket tunnel, String host, int port) > throws IOException > { > - OutputStream out = tunnel.getOutputStream(); > - String msg = "CONNECT " + host + ":" + port + " HTTP/1.0\n" > - + "User-Agent: " > - + sun.net.www.protocol.http.HttpURLConnection.userAgent > - + "\r\n\r\n"; > + /* > + * The proxy may need an authorization string. Check > + * standard https property. > + */ > + String proxyAuth = System.getProperty("https.proxyAuth"); > + > + String msg; > + OutputStream out = tunnel.getOutputStream(); > + > + if (proxyAuth == null) > + { > + // Autherization not required > + > + msg = "CONNECT " + host + ":" + port + " HTTP/1.0\n" > + + "User-Agent: " > + + sun.net.www.protocol.http.HttpURLConnection.userAgent > + + "\r\n\r\n"; > + } > + else > + { > + // need to specify an authorization string in http header > + msg = "CONNECT " + host + ":" + port + " HTTP/1.0\n" > + + "Proxy-Authorization: " + proxyAuth + "\n" > + + "User-Agent: " > + + sun.net.www.protocol.http.HttpURLConnection.userAgent > + + "\r\n\r\n"; > + } > + > byte b[]; > try { > /* > @@ -209,3 +233,4 @@ > /* tunneling Handshake was successful! */ > } > } > + > > > -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]> -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
