java客户端程序使用HttpClient API发送摘要认证请求

时间:2010-01-28 05:48:56

标签: java authentication restlet

我有restlet示例客户端程序,它发送摘要请求。与此类似,我需要使用HttpClient api发送摘要请求的java客户端程序。 任何人都可以给我发送示例代码。提前谢谢。

        Reference reference = new Reference("http://localhost:8092/authenticate");
        Client client = new Client(Protocol.HTTP);
        Request request = new Request(Method.GET, reference);
        Response response = client.handle(request);
        System.out.println("response: "+response.getStatus());

        Form form = new Form();
        form.add("username", "rajesh");
        form.add("uri", reference.getPath());

        // Loop over the challengeRequest objects sent by the server.
        for (ChallengeRequest challengeRequest : response
                .getChallengeRequests()) {
            // Get the data from the server's response.
            if (ChallengeScheme.HTTP_DIGEST
                    .equals(challengeRequest.getScheme())) {
                Series<Parameter> params = challengeRequest.getParameters();
                form.add(params.getFirst("nonce"));
                form.add(params.getFirst("realm"));
                form.add(params.getFirst("domain"));
                form.add(params.getFirst("algorithm"));
                form.add(params.getFirst("qop"));
            }
        }

        // Compute the required data
        String a1 = Engine.getInstance().toMd5(
                "rajesh" + ":" + form.getFirstValue("realm") + ":" + "rajesh");
        String a2 = Engine.getInstance().toMd5(
                request.getMethod() + ":" + form.getFirstValue("uri"));
        form.add("response", Engine.getInstance().toMd5(
                a1 + ":" + form.getFirstValue("nonce") + ":" + a2));

        ChallengeResponse challengeResponse = new ChallengeResponse(
                ChallengeScheme.HTTP_DIGEST, "", "");
        challengeResponse.setCredentialComponents(form);

        // Send the completed request
        request.setChallengeResponse(challengeResponse);
        response = client.handle(request);

        // Should be 200.
        System.out.println(response.getStatus());

2 个答案:

答案 0 :(得分:0)

您是否尝试过以下操作:

ChallengeResponse challengeResponse = new ChallengeResponse(challengeRequest, "rajesh", <password>);

答案 1 :(得分:0)

你走了:

HttpClient client = new HttpClient();
Credentials creds = new UsernamePasswordCredentials(username, password);
client.getState().setCredentials(new AuthScope(host, port, realmName), creds);
GetMethod get = new GetMethod(url);
get.setDoAuthentication(true);
client.getParams().setAuthenticationPreemptive(true); // seems to be necessary in most cases
client.getParams().setParameter(AuthPolicy.AUTH_SCHEME_PRIORITY, Collections.singleton(AuthPolicy.DIGEST));//need to register DIGEST scheme not the basic
client.getAuthSchemes().register(AuthPolicy.DIGEST, new DigestSchemeFactory());
client.executeMethod(get);
result = get.getResponseBodyAsString();