1<testcase>
2<info>
3<keywords>
4HTTP
5HTTP GET
6HTTP Digest auth
7</keywords>
8</info>
9# Server-side
10<reply>
11<data>
12HTTP/1.1 401 Authorization Required swsclose
13Server: Apache/1.3.27 (Darwin) PHP/4.1.2
14WWW-Authenticate: Digest realm="testrealm", algorithm=MD5, algorithm=MD5, nonce=1, nonce=2
15Content-Type: text/html; charset=iso-8859-1
16Content-Length: 26
17
18This is not the real page
19</data>
20
21# This is supposed to be returned when the server gets a
22# Authorization: Digest line passed-in from the client
23<data1000>
24HTTP/1.1 200 OK swsclose
25Server: Apache/1.3.27 (Darwin) PHP/4.1.2
26Content-Type: text/html; charset=iso-8859-1
27Content-Length: 23
28
29This IS the real page!
30</data1000>
31
32<datacheck>
33HTTP/1.1 401 Authorization Required swsclose
34Server: Apache/1.3.27 (Darwin) PHP/4.1.2
35WWW-Authenticate: Digest realm="testrealm", algorithm=MD5, algorithm=MD5, nonce=1, nonce=2
36Content-Type: text/html; charset=iso-8859-1
37Content-Length: 26
38
39HTTP/1.1 200 OK swsclose
40Server: Apache/1.3.27 (Darwin) PHP/4.1.2
41Content-Type: text/html; charset=iso-8859-1
42Content-Length: 23
43
44This IS the real page!
45</datacheck>
46
47</reply>
48
49# Client-side
50<client>
51<server>
52http
53</server>
54<features>
55!SSPI
56crypto
57</features>
58 <name>
59HTTP with duplicated WWW-Authenticate parameters
60 </name>
61 <command>
62http://%HOSTIP:%HTTPPORT/1437 -u testuser:testpass --digest
63</command>
64</client>
65
66# Verify data after the test has been "shot"
67<verify>
68<strip>
69^User-Agent:.*
70</strip>
71<protocol>
72GET /1437 HTTP/1.1
73Host: %HOSTIP:%HTTPPORT
74Accept: */*
75
76GET /1437 HTTP/1.1
77Host: %HOSTIP:%HTTPPORT
78Authorization: Digest username="testuser", realm="testrealm", nonce="2", uri="/1437", response="4376eb639bf8e7343a6e7b56e1b89c4f", algorithm="MD5"
79User-Agent: curl/7.10.5 (i686-pc-linux-gnu) libcurl/7.10.5 OpenSSL/0.9.7a ipv6 zlib/1.1.3
80Accept: */*
81
82</protocol>
83</verify>
84</testcase>
85