1. 13 Apr, 2022 1 commit
  2. 08 Aug, 2021 1 commit
  3. 04 May, 2021 1 commit
  4. 18 Mar, 2021 1 commit
  5. 05 Mar, 2021 1 commit
  6. 11 Feb, 2021 2 commits
  7. 01 Dec, 2020 1 commit
  8. 14 Nov, 2020 1 commit
  9. 28 Oct, 2020 5 commits
  10. 19 Sep, 2020 3 commits
  11. 13 Jan, 2020 1 commit
  12. 25 Jun, 2018 1 commit
  13. 14 Nov, 2016 1 commit
  14. 14 Mar, 2016 1 commit
    • Guido Günther's avatar
      Bug 587145 - Add GSS-Negotiate support · 6a8826f0
      Guido Günther authored and Tomas Popela's avatar Tomas Popela committed
      If a "WWW-Authenticate: Negotiate" HTTP header is spotted libsoup will check if
      the host is on blacklist and the authentication fails if so. Otherwise the host
      is compared against a trusted URIs (if the trusted URIs list is not set all
      the HTTPS requests are trusted by default) and then processed. The trusted URIs
      list and blacklist are both created when a SoupNegotiateAuth is created. The
      trusted URIs list (blacklist) is parsed from the SOUP_GSSAPI_TRUSTED_URIS (
      SOUP_GSSAPI_BLACKLIST_URIS) environment variable that expects the URIs be comma
      separated (e.g. "http://www.example.com,https://www.test.com:80"). Then the
      request is processed by the GSS library (the SPNEGO mechanism is used) which
      produces a token that is send back to the server in the next request. The reply
      is then again processed by the GSS library and the authentication succeeds by
      receiving the GSS_S_COMPLETE status or we continue negotiating when the
      GSS_S_CONTINUE_NEEDED is received.
      
      The SoupAuth object is marked as not authenticated if a user will try to call
      the soup_auth_authenticate() with the credentials provided as this is not
      supported.
      
      If the libsoup is configured with GSS-Negotiate support, a Kerberos library with
      GSSAPI support needs to be available on the system (MIT Kerberos was tested
      while working on this). Developers can check whether the libsoup was
      compiled with the GSS-Negotiate support enabled by checking the
      soup_auth_negotiate_supported() function.
      
      To easily test the GSS-Negotiate functionality a new argument "N" was added to
      the examples/get utility.
      
      A support for NTLMSSP is provided by this patch given that a Kerberos library
      supports NTLMSSP mechanism via GSSAPI. For MIT Kerberos one can use gss-ntlmssp
      module, https://fedorahosted.org/gss-ntlmssp/
      
      .
      Co-Authored-By: Tomas Popela's avatarTomas Popela <tpopela@redhat.com>
      Co-Authored-By: David Woodhouse's avatarDavid Woodhouse <dwmw2@infradead.org>
      Co-Authored-By: Dan Winship's avatarDan Winship <danw@gnome.org>
      6a8826f0
  15. 03 Mar, 2015 1 commit
  16. 23 Nov, 2014 1 commit
  17. 29 Jun, 2013 1 commit
  18. 08 Jun, 2013 1 commit
  19. 02 Jan, 2013 2 commits
    • Dan Winship's avatar
      soup-auth-manager: add soup_auth_manager_use_auth() · b99acd6f
      Dan Winship authored
      Add soup_auth_manager_use_auth(), for "preloading" authentication, and
      make the old automatically-request-NTLM behavior happen only for
      the legacy SoupSession subclasses.
      b99acd6f
    • Dan Winship's avatar
      soup-auth-manager: split out connection handling · 586aef88
      Dan Winship authored
      Add a new SoupConnectionAuth class to help with connection tracking,
      and make SoupAuthNTLM a subclass of it. Allow a single SoupAuthNTLM to
      carry state information about multiple connections.
      
      Make SoupSession store the SoupConnection a SoupMessage is associated
      with on the message, and use that from SoupConnectionAuth rather than
      tracking sockets by hand like SoupAuthManager had previously done.
      Remove the connection tracking in SoupAuthManager, since it is no
      longer needed.
      586aef88
  20. 29 Dec, 2012 1 commit
    • Dan Winship's avatar
      Reorganize NTLM authentication, fix ntlm_auth support · 9e90b875
      Dan Winship authored
      Move the auth-managery parts of SoupAuthManagerNTLM down into
      SoupAuthManager, and the NTLMy parts into SoupAuthNTLM (in preparation
      for supporting other kinds of connection-based auth such as
      Negotiate).
      
      The reorganization also makes it possible to use SoupAuthNTLM to
      implement a mock version of /usr/bin/ntlm_auth, so we can extend
      ntlm-test to test both the built-in-NTLM and external-NTLM codepaths.
      Doing this reveals that, AFAICT, the external codepath did not
      previously actually work, because it mis-used
      G_SPAWN_FILE_AND_ARGV_ZERO and so ended up passing incorrect arguments
      to /usr/bin/ntlm_auth.
      9e90b875
  21. 11 Dec, 2012 1 commit
  22. 13 Jul, 2012 3 commits
  23. 08 Feb, 2012 1 commit
    • Dan Winship's avatar
      Use Makefile.glib · 4dc4c055
      Dan Winship authored
      Test drive Makefile.glib from bug 654395 (excepted distributed with
      the tarball rather than using one installed with glib).
      4dc4c055
  24. 22 Sep, 2011 1 commit
  25. 13 Sep, 2010 1 commit
  26. 09 Jun, 2010 1 commit
  27. 30 Apr, 2010 1 commit
  28. 26 Apr, 2010 1 commit
    • Andreas Rottmann's avatar
      Add gobject-introspection support · 0c4a6322
      Andreas Rottmann authored
      - Detect gobject-introspection (g-i) in configure, using the M4 macro
        from the newly-added introspection.m4. This adds
        gobject-introspection as a new *optional* build dependency.
      
      - Integrate the generation of .gir and .typelib files into the build
        build process.
      
      - Add the annotations from gir-repository to the source code.
      
      - Include annotation glossary in "Reference Manual" main file.
      
      See <https://bugzilla.gnome.org/show_bug.cgi?id=576595>.
      0c4a6322
  29. 07 Sep, 2009 1 commit
  30. 12 Aug, 2009 1 commit