Merge pull request #130 from puzza007/negotiate_auth_puz

puzza007 · web-flow · commit aabd4fca4683 · 2022-02-22T14:36:21.000+13:00
feat: add HTTP Negotiate (SPNEGO) authentication
diff --git a/c_src/katipo.c b/c_src/katipo.c
@@ -51,6 +51,7 @@
 #define K_CURLAUTH_DIGEST 101
 #define K_CURLAUTH_UNDEFINED 102
 #define K_CURLAUTH_NTLM 103
+#define K_CURLAUTH_NEGOTIATE 104
 
 struct bufferevent *to_erlang;
 struct bufferevent *from_erlang;
@@ -1104,6 +1105,8 @@ static void erl_input(struct bufferevent *ev, void *arg) {
             eopts.curlopt_http_auth = CURLAUTH_DIGEST;
           } else if (eopt_long == K_CURLAUTH_NTLM) {
             eopts.curlopt_http_auth = CURLAUTH_NTLM;
+          } else if (eopt_long == K_CURLAUTH_NEGOTIATE) {
+            eopts.curlopt_http_auth = CURLAUTH_NEGOTIATE;  
           } else if (eopt_long != K_CURLAUTH_UNDEFINED) {
             errx(2, "Unknown curlopt_http_auth value %ld", eopt_long);
           }
diff --git a/src/katipo.erl b/src/katipo.erl
@@ -112,6 +112,7 @@
 -define(CURLAUTH_DIGEST, 101).
 -define(CURLAUTH_UNDEFINED, 102).
 -define(CURLAUTH_NTLM, 103).
+-define(CURLAUTH_NEGOTIATE, 104).
 -define(TCP_FASTOPEN_FALSE, 0).
 -define(TCP_FASTOPEN_TRUE, 1).
 -define(LOCK_DATA_SSL_SESSION_FALSE, 0).
@@ -258,8 +259,8 @@
                            metrics => proplists:proplist()}} |
                     {error, #{code := error_code(),
                               message := error_msg()}}.
--type http_auth() :: basic | digest | ntlm.
--type http_auth_int() :: ?CURLAUTH_UNDEFINED | ?CURLAUTH_BASIC | ?CURLAUTH_DIGEST | ?CURLAUTH_NTLM.
+-type http_auth() :: basic | digest | ntlm | negotiate.
+-type http_auth_int() :: ?CURLAUTH_UNDEFINED | ?CURLAUTH_BASIC | ?CURLAUTH_DIGEST | ?CURLAUTH_NTLM | ?CURLAUTH_NEGOTIATE.
 -type pipelining() :: nothing | http1 | multiplex.
 -type curlopt_http_version() :: curl_http_version_none |
                                 curl_http_version_1_0 |
@@ -663,6 +664,8 @@ opt(http_auth, digest, {Req, Errors}) ->
     {Req#req{http_auth=?CURLAUTH_DIGEST}, Errors};
 opt(http_auth, ntlm, {Req, Errors}) ->
     {Req#req{http_auth=?CURLAUTH_NTLM}, Errors};
+opt(http_auth, negotiate, {Req, Errors}) ->
+    {Req#req{http_auth=?CURLAUTH_NEGOTIATE}, Errors};
 opt(username, Username, {Req, Errors}) when is_binary(Username) ->
     {Req#req{username=Username}, Errors};
 opt(password, Password, {Req, Errors}) when is_binary(Password) ->
