summaryrefslogtreecommitdiff
path: root/lib/curl_sasl.h
Commit message (Collapse)AuthorAgeFilesLines
* internals: rename the SessionHandle struct to Curl_easyDaniel Stenberg2016-06-221-1/+1
|
* vauth: Moved the NTLM authentication code to the new vauth directorySteve Holme2016-03-251-29/+0
|
* vauth: Moved the Kerberos V5 authentication code to the new vauth directorySteve Holme2016-03-251-28/+0
|
* vauth: Moved the DIGEST authentication code to the new vauth directorySteve Holme2016-03-251-44/+0
|
* vauth: Moved Curl_sasl_build_spn() to create the initial vauth source filesSteve Holme2016-03-251-11/+0
|
* digest: Use boolean based success code for Curl_sasl_digest_get_pair()Steve Holme2016-03-121-3/+3
| | | | | Rather than use a 0 and 1 integer base result code use a TRUE / FALSE based success code.
* URLs: change all http:// URLs to https://Daniel Stenberg2016-02-031-1/+1
|
* oauth2: Support OAUTHBEARER failures sent as continuation responsesSteve Holme2015-11-151-0/+1
| | | | | | | According to RFC7628 a failure message may be sent by the server in a base64 encoded JSON string as a continuation response. Currently only implemented for OAUTHBEARER and not XAUTH2.
* oauth2: Added support for OAUTHBEARER SASL mechanism to IMAP, POP3 and SNMPSteve Holme2015-11-141-8/+10
| | | | | | OAUTHBEARER is now the official "registered" SASL mechanism name for OAuth 2.0. However, we don't want to drop support for XOAUTH2 as some servers won't support the new mechanism yet.
* sasl: Re-introduced XOAUTH2 in the default enabled authentication mechanismSteve Holme2015-11-121-2/+1
| | | | | | | | | Following the fix in commit d6d58dd558 it is necessary to re-introduce XOAUTH2 in the default enabled authentication mechanism, which was removed in commit 7b2012f262, otherwise users will have to specify AUTH=XOAUTH2 in the URL. Note: OAuth 2.0 will only be used when the bearer is specified.
* oauth2: Re-factored OAuth 2.0 state variableSteve Holme2015-11-121-1/+1
|
* sasl: Only define Curl_sasl_digest_get_pair() when CRYPTO_AUTH enabledSteve Holme2015-08-311-4/+3
| | | | | | Introduced in commit 59f3f92ba6 this function is only implemented when CURL_DISABLE_CRYPTO_AUTH is not defined. As such we shouldn't define the function in the header file either.
* sasl: Updated SPN variables and comments for consistencySteve Holme2015-08-311-1/+1
| | | | | In places the "host name" and "realm" variable was referred to as "instance" whilst in others it was referred to as "host".
* sasl_sspi: Populate domain from the realm in the challengeGrant Pannell2015-04-261-0/+9
| | | | | | Without this, SSPI based digest auth was broken. Bug: https://github.com/bagder/curl/pull/141.patch
* sasl: remove XOAUTH2 from default enabled authentication mechanism.Patrick Monnerat2015-01-271-1/+2
|
* sasl: implement EXTERNAL authentication mechanism.Patrick Monnerat2015-01-271-4/+9
| | | | | Its use is only enabled by explicit requirement in URL (;AUTH=EXTERNAL) and by not setting the password.
* curl_sasl: Minor code policing following recent commitsSteve Holme2015-01-221-1/+1
|
* SASL: make some procedures local-scopedPatrick Monnerat2015-01-201-29/+0
|
* SASL: common state engine for imap/pop3/smtpPatrick Monnerat2015-01-201-1/+53
|
* SASL: common URL option and auth capabilities decoders for all protocolsPatrick Monnerat2015-01-201-0/+12
|
* IMAP/POP3/SMTP: use a per-connection sub-structure for SASL parameters.Patrick Monnerat2015-01-201-0/+8
|
* sasl_gssapi: Make Curl_sasl_build_gssapi_spn() publicSteve Holme2015-01-181-1/+5
|
* kerberos: Use symbol qualified with _KERBEROS5Michael Osipov2014-11-161-3/+3
| | | | For consistency renamed USE_KRB5 to USE_KERBEROS5.
* sasl: Moved Curl_sasl_gssapi_cleanup() definition into header fileSteve Holme2014-11-141-0/+3
| | | | | | | | Rather than define the function as extern in the source files that use it, moved the function declaration into the SASL header file just like the Digest and NTLM clean-up functions. Additionally, added a function description comment block.
* ntlm: Moved the native Target Info clean-up from HTTP specific functionSteve Holme2014-11-091-2/+0
|
* ntlm: Moved SSPI clean-up code into SASL moduleSteve Holme2014-11-091-0/+5
|
* sasl: Fixed compilation warning from commit 25264131e2Steve Holme2014-11-051-0/+7
| | | | | | | | | | Added forward declaration of digestdata to overcome the following compilation warning: warning: 'struct digestdata' declared inside parameter list Additionally made the ntlmdata forward declaration dependent on USE_NTLM similar to how digestdata and kerberosdata are.
* http_digest: Moved response generation into SASL moduleSteve Holme2014-11-051-0/+9
|
* http_digest: Moved challenge decoding into SASL moduleSteve Holme2014-11-051-0/+4
|
* http_digest: Moved clean-up function into SASL moduleSteve Holme2014-11-051-0/+3
|
* http_digest: Moved algorithm definitions to SASL moduleSteve Holme2014-11-051-0/+5
|
* sasl: Fixed Kerberos V5 inclusion when CURL_DISABLE_CRYPTO_AUTH is usedSteve Holme2014-11-021-3/+3
| | | | | | | | | | | Typically the USE_WINDOWS_SSPI definition would not be used when the CURL_DISABLE_CRYPTO_AUTH define is, however, it is still a valid build configuration and, as such, the SASL Kerberos V5 (GSSAPI) authentication data structures and functions would incorrectly be used when they shouldn't be. Introduced a new USE_KRB5 definition that takes into account the use of CURL_DISABLE_CRYPTO_AUTH like USE_SPNEGO and USE_NTLM do.
* curl_sasl.h: Fixed compilation error from commit 4b491c675fSteve Holme2014-08-141-0/+4
| | | | | | warning: 'struct kerberos5data' declared inside parameter list Due to missing forward declaration.
* sasl_sspi: Added GSSAPI message functionsSteve Holme2014-08-141-0/+21
|
* sasl: Introduced Curl_sasl_build_spn() for building a SPNSteve Holme2014-08-091-0/+7
| | | | | | | | | | | | Various parts of the libcurl source code build a SPN for inclusion in authentication data. This information is either used by our own native generation routines or passed to authentication functions in third-party libraries such as SSPI. However, some of these instances use fixed buffers rather than dynamically allocated ones and not all of those that should, convert to wide character strings in Unicode builds. Implemented a common function that generates a SPN and performs the wide character conversion where necessary.
* sasl: Added forward declaration of structures following recent changesSteve Holme2014-04-061-1/+5
| | | | | | To avoid urldata.h being included from the header file or that the source file has the correct include order as highlighted by one of the auto builds recently.
* sasl: Corrected add of Curl_sasl_decode_digest_md5_message() from 2c49e96092Steve Holme2014-04-061-6/+0
|
* sasl: Corrected pre-processor inclusion of SSPI based DIGEST-MD5 codeSteve Holme2014-04-061-2/+0
| | | | | | | When CURL_DISABLE_CRYPTO_AUTH is defined the DIGEST-MD5 code should not be included, regardless of whether USE__WINDOWS_SSPI is defined or not. This is indicated by the definition of USE_HTTP_NEGOTIATE and USE_NTLM in curl_setup.h.
* sasl: Added initial stub functions for SSPI DIGEST-MD supportSteve Holme2014-04-051-0/+8
|
* sasl: Combined DIGEST-MD5 message decoding and generationSteve Holme2014-04-051-10/+3
|
* email: Added support for cancelling NTLM authenticationSteve Holme2013-10-271-3/+6
|
* email: Added support for cancelling DIGEST-MD5 authenticationSteve Holme2013-10-271-1/+8
|
* email: Corrected a couple of typos from 1e39b95682781fSteve Holme2013-10-271-2/+2
|
* email: Added support for canceling CRAM-MD5 authenticationSteve Holme2013-10-271-1/+5
|
* sasl: Centralised the authentication mechanism stringsSteve Holme2013-09-241-10/+25
| | | | | | | | | | Moved the standard SASL mechanism strings into curl_sasl.h rather than hard coding the same values over and over again in the protocols that use SASL authentication. For more information about the mechanism strings see: http://www.iana.org/assignments/sasl-mechanisms
* SASL: fix compiler warningsDaniel Stenberg2013-09-041-1/+1
| | | | | | comparison between signed and unsigned integer expressions suggest parentheses around '&&' within '||' (twice)
* sasl: added basic SASL XOAUTH2 supportKyle L. Huff2013-08-251-0/+8
| | | | | | Added the ability to generated a base64 encoded XOAUTH2 token containing: "user=<username>^Aauth=Bearer <bearer token>^A^A" as per RFC6749 "OAuth 2.0 Authorization Framework".
* sasl: Reworked SASL mechanism constantsSteve Holme2013-04-131-7/+7
| | | | | ... to use left-shifted values, like those defined in curl.h, rather than 16-bit hexadecimal values.
* sasl: Added predefined preferred mechanism valuesSteve Holme2013-04-131-0/+4
| | | | | In preparation for the upcoming changes to IMAP, POP3 and SMTP added preferred mechanism values.
* sasl: Corrected a few violations of the curl coding standardsSteve Holme2013-03-211-11/+11
| | | | | Corrected some incorrectly positioned pointer variable declarations to be "char *" rather than "char* ".