-
Notifications
You must be signed in to change notification settings - Fork 822
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Proxy authentication is not working #3748
Comments
Please provide the message.log file. On windows it can be found in the directory |
Hi, Here it is |
Hi @shoblingr ,
|
Hi, |
Ah, very true, I didn't notice you were already setting user/password. |
Hi, it basic authentication (Proxy-Authenticate: BASIC realm="Auth_LDAP"). I did some tests using jmeter to pass through the proxy. Using java sampler implementation, I have the same behavior than netbeans : But if I switch to Apache HttpClient4 implementation, the call is successful with the same proxy configuration... |
I'll risk a guess: Your password (or the username) contains characters outside the ASCII range. If I remember correctly Basic Auth was only defined for Latin1, but was extended to UTF-8 . Do you have the option to test with a password containing only ASCII characters? |
No, password is in only standard letters and numbers... So it is ASCII only |
Ok I found a solution :) To fix the issue, I added the option -Djdk.http.auth.tunneling.disabledSchemes="" to netbean conf as follow: Now it works great :) Stef |
Doesn't that amount to disabling a security feature of the JDK by default? In which case, probably not. Better error message maybe? Also see https://bugzilla.redhat.com/show_bug.cgi?id=1386103 |
If we warn the user, it is a feature, not a CVE. If your IT department requires you to use an authenticated proxy, you probably won't have a chance to change their thinking. The problem is, that the JDK at least partitially uses aggressive caching of the property: So if you want to make that dynamic you have to reflect into an internal module. |
we could add a hint to the proxy settings window explaining that a flag might be required to get legacy auth behavior back. Accessing JDK internals should only be used as last resort IMO. Ideally we should try to shrink the --add-opens list if possible (edit: link to list + readme). |
I created this PR for the website explaining the problem apache/netbeans-website#592 |
Hi, this is already done, please look at the screenshot I posted
Regards,
Stef
Le ven. 11 mars 2022 à 23:03, Antonio Vieiro ***@***.***> a
écrit :
… Hi @shoblingr <https://github.com/shoblingr> ,
You're getting an HTTP 407 "Proxy Authentication Required" (
https://developer.mozilla.org/en-US/docs/Web/HTTP/Status/407)
- Click the "More..." button at the right of the "Manual Proxy
Settings".
- Check the "Proxy Requires Explicit Authentication"
- The "Advanced Proxy Options" dialog appears, enter the username and
password that you need for that proxy.
[image: imagen]
<https://user-images.githubusercontent.com/564140/157976209-aef8c7d0-e68c-46bb-9744-f25007ee68f1.png>
—
Reply to this email directly, view it on GitHub
<#3748 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AA3VDFTQIZ6ATYPXROTOT5TU7O7KFANCNFSM5QL3XGKQ>
.
Triage notifications on the go with GitHub Mobile for iOS
<https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675>
or Android
<https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub>.
You are receiving this because you were mentioned.Message ID:
***@***.***>
|
Apache NetBeans version
Apache NetBeans 13
What happened
The proxy is configured in the config panel, with user and password specified. But for the test we get message "407 Proxy Ahtentication Required".
Connection is not working, eg. fetching plugins is ko.
See attached image for detail.
How to reproduce
configure proxy and click test...
Did this work correctly in an earlier version?
Apache NetBeans 12.3 or earlier
Operating System
Windows 10
JDK
jdk-11.0.8+10
Apache NetBeans packaging
Apache NetBeans binary zip
Anything else
No response
Are you willing to submit a pull request?
No
Code of Conduct
Yes
The text was updated successfully, but these errors were encountered: