-
Notifications
You must be signed in to change notification settings - Fork 104
/
130-Digest-EmptyPasswd.py
60 lines (49 loc) · 2.02 KB
/
130-Digest-EmptyPasswd.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
from conf import *
from base import *
MAGIC = "Show this"
REALM = "realm"
USER = "username"
PASSWD = ""
CONF = """
vserver!1!rule!1300!match = directory
vserver!1!rule!1300!match!directory = /digest_empty
vserver!1!rule!1300!match!final = 0
vserver!1!rule!1300!auth = plain
vserver!1!rule!1300!auth!methods = digest
vserver!1!rule!1300!auth!realm = %s
vserver!1!rule!1300!auth!passwdfile = %s
"""
class Test (TestBase):
def __init__ (self):
TestBase.__init__ (self, __file__)
self.name = "Digest - Plain: empty passwd"
self.expected_error = 200
self.expected_content = MAGIC
def JustBefore (self, www):
# It will read a validad nonce value just before each test
#
nested = TestBase(__file__)
nested.request = "GET /digest_empty/file HTTP/1.0\r\n"
nested.Run(HOST, PORT, 0)
# Parse the authentication information line
#
nested.digest = self.Digest()
vals = nested.digest.ParseHeader (nested.reply)
# Calculate the response value
#
response = nested.digest.CalculateResponse (USER, REALM, PASSWD, "GET", "/digest_empty/file",
vals["nonce"], vals["qop"], vals["cnonce"], vals["nc"])
# At this point, we got a valid nonce, so let's write the
# request..
self.request = "GET /digest_empty/file HTTP/1.0\r\n" +\
"Authorization: Digest response=\"%s\", username=\"%s\", realm=\"%s\", uri=\"%s\", nonce=\"%s\", qop=\"%s\", algorithm=\"%s\"\r\n" % \
(response, USER, REALM, "/digest_empty/file", vals["nonce"], vals["qop"], vals["algorithm"])
def Prepare (self, www):
# Create the infrastructure
#
self.Mkdir (www, "digest_empty")
self.WriteFile (www, "digest_empty/file", 0444, MAGIC)
passfile = self.WriteFile (www, "digest_empty/.passwd", 0444, "%s:%s\n" % (USER, PASSWD))
# Set the configuration
#
self.conf = CONF % (REALM, passfile)