java source code of NTLMv2Scheme

davmail-master
- src
  - license.txt
  - appstream
    - org.davmail.DavMail.appdata.xml
  - osx
    - Info.plist
    - readme.txt
    - davmail
    - tray.icns
  - contribs
    - wrapper
      - readme.txt
      - bin
        davmail_2
        davmail
      - conf
        wrapper.conf_2
        wrapper.conf
    - init
      - davmail-init
    - davmailpd
      - davmailpd
  - web
    - WEB-INF
      - web.xml
  - init
    - davmail.service
    - davmail-logrotate
    - davmail-init
    - davmail-wrapper
  - site
    - resources
      - images
        osx
        android
        osxdesktop.jpg
        davmail.svg
        iphone
      - setup.html
      - favicon.ico
      - css
        site.css
    - xdoc
      - index.xml
      - build.xml
      - download.xml
      - iphonecarddavsetup.xml
      - faq.xml
      - advanced.xml
      - androidsetup.xml
      - thunderbirdcarddavsetup.xml
      - iphonemailsetup.xml
      - osxicalsetup.xml
      - androiddavdroidsetup.xml
      - thunderbirdimapmailsetup.xml
      - thunderbirdcalendarsetup.xml
      - iphonecaldavsetup.xml
      - thunderbirddirectorysetup.xml
      - windowssetup.xml
      - macosxsetup.xml
      - sslsetup.xml
      - osxaddressbooksetup.xml
      - androidmailsetup.xml
      - linuxsetup.xml
      - iphonesetup.xml
      - reviews.xml
      - roadmap.xml
      - osximapmailsetup.xml
      - kerberos.xml
      - gettingstarted.xml
      - thunderbirdmailsetup.xml
      - serversetup.xml
      - osxdirectorysetup.xml
    - site.xml
  - test
    - davmail
      - ldap
        TestLdap.java
      - ui
        TestNotificationDialog.java
      - exchange
        TestExchangeSessionEvent.java
        TestExchange2003ActiveSyncBug.java
        TestExchangeAdapter.java
        TestExchangeSessionFolder.java
        TestExchangeSessionCalendar.java
        TestExchangeSessionContact.java
        TestDoubleDotInputStream.java
        TestVProperty.java
        TestExchangeSessionSearchContact.java
        TestExchangeSessionMessageFlags.java
        TestO365Authenticator.java
        ews
        TestEwsExchangeSession.java
        TestExchange2007EWS.java
        TestExchangeSessionMessage.java
        AbstractExchangeSessionTestCase.java
        TestExchangeSession.java
        TestICSBufferedReader.java
        TestExchangePropfindMethod.java
        dav
        TestDavExchangeSessionMessage.java
        AbstractDavExchangeSessionTestCase.java
        TestExchange2007Folders.java
        TestDavExchangeSessionOther.java
        TestHC4DavExchangeSession.java
        TestDavSessionExchange2007.java
        TestAuthenticators.java
      - util
        ServerSocketRunner.java
        StringEncryptorTest.java
        StringUtilTest.java
        ClientCertificateTest.java
      - smtp
        TestSmtp.java
      - TestDavGateway.java
      - imap
        TestImap.java
        TestImapFullSync.java
        TestImapErrorHandling.java
        TestImapQuotedFolder.java
        TestImapFolders.java
        TestImapTokenizer.java
        AbstractImapTestCase.java
      - caldav
        TestCaldavHttpClient4.java
        TestCaldavRecurringEvent.java
        TestCaldavMeetings.java
        TestCaldav.java
      - http
        TestPostRequest.java
        TestHttpClient4.java
        TestURIBuilder.java
        TestGetRequest.java
        TestHttpClientAdapter.java
      - AbstractDavMailTestCase.java
      - AbstractExchange2007TestCase.java
  - checkstyle
    - checkstyle-configuration.xml
  - desktop
    - davmail.desktop
  - java
    - davmailmessages.properties
    - stdtimezones.properties
    - imapflags.properties
    - exchtimezones.properties
    - davmailmessages_it.properties
    - log4j.properties
    - imapflags_it.properties
    - timezoneids.properties
    - timezones.properties
    - imapflags_fr.properties
    - davmailmessages_fr.properties
    - tzoffsettimezones.properties
    - davmail
      - ldap
        BerEncoder.java
        BerDecoder.java
        Ber.java
        LdapConnection.java
        LdapServer.java
        HexDumpEncoder.java
      - DavGateway.java
      - BundleMessage.java
      - web
        DavGatewayServletContextListener.java
      - ui
        AcceptCertificateDialog.java
        PasswordPromptDialog.java
        NotificationDialog.java
        SelectCertificateDialog.java
        browser
        AwtDesktopBrowser.java
        SwtDesktopBrowser.java
        XdgDesktopBrowser.java
        DesktopBrowser.java
        OSXDesktopBrowser.java
        CredentialPromptDialog.java
        OSXInfoPlist.java
        SettingsFrame.java
        AboutFrame.java
        tray
        FrameGatewayTray.java
        DavGatewayTray.java
        SwtGatewayTray.java
        OSXHandler.java
        OSXTrayInterface.java
        DavGatewayTrayInterface.java
        OSXFrameGatewayTray.java
        AwtGatewayTray.java
        OSXAwtGatewayTray.java
      - exchange
        VProperty.java
        DoubleDotInputStream.java
        ICSBufferedReader.java
        XMLStreamUtil.java
        NetworkDownException.java
        DoubleDotOutputStream.java
        ExchangeSessionFactory.java
        MimeOutputStreamWriter.java
        ICSBufferedWriter.java
        ews
        FieldUpdate.java
        GetUserConfigurationMethod.java
        MessageDisposition.java
        RecurrenceFieldUpdate.java
        AlternateId.java
        ResolveNamesMethod.java
        AutoDiscoverMethod.java
        GetUserAvailabilityMethod.java
        SendMeetingCancellations.java
        ElementOption.java
        FolderId.java
        IndexedFieldUpdate.java
        FieldURI.java
        FindFolderMethod.java
        CreateAttachmentMethod.java
        EWSThrottlingException.java
        ConflictResolution.java
        UpdateFolderMethod.java
        TwoOperandExpression.java
        UnindexedFieldURI.java
        DeleteItemMethod.java
        MoveItemMethod.java
        CreateItemMethod.java
        GetUserPhotoMethod.java
        ExtendedFieldURI.java
        OccurrenceItemId.java
        FieldOrder.java
        UpdateItemMethod.java
        Field.java
        GetFolderMethod.java
        GetItemMethod.java
        SendMeetingInvitationsOrCancellations.java
        MoveFolderMethod.java
        FolderQueryTraversal.java
        Option.java
        EwsExchangeSession.java
        FindItemMethod.java
        DeleteType.java
        ExpandDLMethod.java
        MultiValuedFieldUpdate.java
        FileAttachment.java
        DistinguishedFolderId.java
        SearchExpression.java
        EWSException.java
        GetAttachmentMethod.java
        ContainmentMode.java
        CopyItemMethod.java
        ContainmentComparison.java
        SendMeetingInvitations.java
        DeleteFolderMethod.java
        ItemId.java
        CreateFolderMethod.java
        ConvertIdMethod.java
        AffectedTaskOccurrences.java
        SearchScope.java
        DeleteAttachmentMethod.java
        EWSMethod.java
        IndexedFieldURI.java
        BaseShape.java
        AttributeOption.java
        Disposal.java
        MessageLoadThread.java
        VCalendar.java
        VObject.java
        auth
        O365Authenticator.java
        O365ManualAuthenticatorDialog.java
        ExchangeFormAuthenticator.java
        O365InteractiveAuthenticatorFrame.java
        O365InteractiveAuthenticator.java
        ExchangeAuthenticator.java
        O365StoredTokenAuthenticator.java
        HttpURLConnectionWrapper.java
        O365Token.java
        O365InteractiveJSLogger.java
        O365ManualAuthenticator.java
        HC4ExchangeFormAuthenticator.java
        FolderLoadThread.java
        dav
        ExchangeDavMethod.java
        ExchangeSearchMethod.java
        PropertyType.java
        ExchangePropFindMethod.java
        Field.java
        DavExchangeSession.java
        ExchangePropPatchMethod.java
        HC4DavExchangeSession.java
        PropertyValue.java
        MessageCreateThread.java
        VCardWriter.java
        ExchangeSession.java
      - util
        StringUtil.java
        StringEncryptor.java
        IOUtil.java
      - smtp
        SmtpServer.java
        SmtpConnection.java
      - imap
        ImapConnection.java
        ImapServer.java
      - service
        DavService.java
      - exception
        HttpForbiddenException.java
        HttpServerErrorException.java
        InsufficientStorageException.java
        WebdavNotAvailableException.java
        HttpPreconditionFailedException.java
        HttpNotFoundException.java
        DavMailException.java
        DavMailAuthenticationException.java
        LoginTimeoutException.java
      - pop
        PopConnection.java
        PopServer.java
      - caldav
        CaldavConnection.java
        CaldavServer.java
      - Settings.java
      - http
        KerberosHelper.java
        KerberosLoginConfiguration.java
        HttpClientAdapter.java
        DavGatewayX509TrustManager.java
        JCIFSEngine.java
        RestMethod.java
        LenientBasicScheme.java
        DavGatewayProxySelector.java
        SunPKCS11ProviderHandler.java
        request
        ExchangePropFindRequest.java
        PostRequest.java
        ResponseWrapper.java
        ExchangeDavRequest.java
        ExchangeSearchRequest.java
        RestRequest.java
        ExchangePropPatchRequest.java
        GetRequest.java
        DavGatewaySSLSocketFactory.java
        DavMailX509KeyManager.java
        DavMailIdleConnectionEvictor.java
        SpNegoScheme.java
        NTLMv2Scheme.java
        URIUtil.java
        DavGatewayHttpClientFacade.java
        DavGatewayOTPPrompt.java
        DavMailCookieSpec.java
        JCIFSNTLMSchemeFactory.java
        DavGatewaySSLProtocolSocketFactory.java
      - AbstractConnection.java
      - AbstractServer.java
  - icon
  - bin
    - davmail
  - etc
    - davmail.properties
  - winrun4j
    - davmailconsole.exe
    - davmailservice.ini
    - davmail.ico
    - davmailservice.exe
    - davmail64.ini
    - rcedit64.exe
    - update.cmd
    - davmail.exe
    - davmail.ini
    - rcedit.exe
    - davmailservice64.ini
- build.xml
- davmail.spec
- RELEASE-NOTES.md
- libgrowl
  - src
    - resources
      - images
        duke.gif
    - java
      - info
        growl
        test
        TestGrowl.java
        DummyGrowl.java
        GrowlException.java
        GrowlUtils.java
        GrowlNative.java
        GrowlCallbackListener.java
        Growl.java
    - native
      - Makefile
      - GrowlJavaCallback.mm
      - GrowlJavaCallback.h
      - GrowlJava.mm
  - build.xml
- pom.xml
- LICENSE
- nsis
- archive
  - davmail.jsmooth
  - davmailconsole.jsmooth
  - davmailservice.jsmooth
  - jsmooth
    - skeletons
      - autodownload-wrapper
        autodownload.skel
        customdownload.skel
      - windowed-wrapper64
        description64.skel
      - winservice-wrapper
        description.skel
      - console-wrapper
        description.skel
  - jsmooth-0.9.9-7-patch
    - src
      - net
        charabia
        util
        codec
        IcoCodec.java
        jsmoothgen
        application
        ExeCompiler.java
        JSmoothModelBean.java
        PropertiesBuilder.java
        gui
        util
        HTMLPane.java
        editors
        ExecutableIcon.java
        pe
        res
        ResIcon32.java
        ResIcon.java
        PESection.java
        PEFile.java
        PEResourceDirectory.java
        PEHeader.java
    - build.xml
    - sample
      - build.xml
    - jsprj
      - prooftest.jsmooth
      - jsmoothgen.jsmooth
      - jsmoothcmd.jsmooth
      - prooftest64.jsmooth
      - jsmoothcmd64.jsmooth
    - skeletons
      - samplejar
        sample.manifest
      - simplewrap
        description64.skel
        Makefile.win
        mainres.rc
      - consolewrapper
        description64.skel
        Makefile.win
        mainres.rc
      - util-net
        Makefile.win
      - util-core
        StringUtils.h
        FileUtils.h
        Makefile.win
        FileUtils.cpp
      - winservice
        description64.skel
        Makefile.win
        mainres.rc
      - commonjava
        ResourceManager.cpp
        JVMRegistryLookup.cpp
        Version.h
        SunJVMLauncher.cpp
        JVMBase.h
        ResourceManager.h
        JVMBase.cpp
        Makefile.win
        JavaMachineManager.cpp
        JVMRegistryLookup.h
        SunJVMDLL.cpp
        SunJVMExe.cpp
      - autodownload
        autodownload64.skel
        customdownload64.skel
        Makefile.win
        mainres.rc
- lib
  - servlet-api.jar
  - htmlcleaner-2.21.jar
  - jcharset-2.0.jar
  - activation-1.1.1.jar
  - slf4j-log4j12-1.7.25.jar
  - jettison-1.4.0.jar
  - slf4j-api-1.7.25.jar
  - libgrowl-0.2.jar
  - commons-logging-1.0.4.jar
  - stax2-api-3.1.1.jar
  - hamcrest-core-1.3.jar
  - stax-api-1.0.1.jar
  - nsisant-1.2.jar
  - jdom-1.0.jar
  - ant-deb-0.0.1.jar
  - winrun4j-0.4.5.jar
  - libgrowl.jnilib
- appveyor.yml
- sonar.properties
- svnant
  - antlr-runtime-3.4.jar
  - sequence-library-1.0.2.jar
  - svnant.jar
- davmail-setup.nsi
- davmail-setup64.nsi
- .travis.yml
- README.md
- releaseguide.txt
- .gitignore

/*
 * DavMail POP/IMAP/SMTP/CalDav/LDAP Exchange Gateway
 * Copyright (C) 2010  Mickael Guessant
 *
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; either version 2
 * of the License, or (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
 */
package davmail.http;

import jcifs.ntlmssp.NtlmFlags;
import jcifs.ntlmssp.Type1Message;
import jcifs.ntlmssp.Type2Message;
import jcifs.ntlmssp.Type3Message;
import org.apache.commons.codec.binary.Base64;
import org.apache.commons.httpclient.Credentials;
import org.apache.commons.httpclient.HttpMethod;
import org.apache.commons.httpclient.NTCredentials;
import org.apache.commons.httpclient.auth.*;
import org.apache.commons.httpclient.util.EncodingUtil;

import java.io.IOException;

/**
 * NTLMv2 scheme implementation.
 */
public class NTLMv2Scheme implements AuthScheme {
    private static final int UNINITIATED = 0;
    private static final int INITIATED = 1;
    private static final int TYPE1_MSG_GENERATED = 2;
    private static final int TYPE2_MSG_RECEIVED = 3;
    private static final int TYPE3_MSG_GENERATED = 4;
    private static final int FAILED = Integer.MAX_VALUE;

    private Type2Message type2Message;
    /**
     * Authentication process state
     */
    private int state;

    /**
     * Processes the NTLM challenge.
     *
     * @param challenge the challenge string
     * @throws MalformedChallengeException is thrown if the authentication challenge
     *                                     is malformed
     */
    public void processChallenge(final String challenge) throws MalformedChallengeException {
        String authScheme = AuthChallengeParser.extractScheme(challenge);
        if (!authScheme.equalsIgnoreCase(getSchemeName())) {
            throw new MalformedChallengeException("Invalid NTLM challenge: " + challenge);
        }
        int spaceIndex = challenge.indexOf(' ');
        if (spaceIndex != -1) {
            try {
                type2Message = new Type2Message(Base64.decodeBase64(EncodingUtil.getBytes(
                        challenge.substring(spaceIndex).trim(), "ASCII")));
            } catch (IOException e) {
                throw new MalformedChallengeException("Invalid NTLM challenge: " + challenge, e);
            }
            this.state = TYPE2_MSG_RECEIVED;
        } else {
            this.type2Message = null;
            if (this.state == UNINITIATED) {
                this.state = INITIATED;
            } else {
                this.state = FAILED;
            }
        }
    }


    /**
     * Returns textual designation of the NTLM authentication scheme.
     *
     * @return <code>ntlm</code>
     */
    public String getSchemeName() {
        return "ntlm";
    }

    /**
     * Not used with NTLM.
     *
     * @return null
     */
    public String getParameter(String s) {
        return null;
    }

    /**
     * Not used with NTLM.
     *
     * @return null
     */
    public String getRealm() {
        return null;
    }

    /**
     * Deprecated.
     */
    @Deprecated
    public String getID() {
        throw new UnsupportedOperationException();
    }

    /**
     * NTLM is connection based.
     *
     * @return true
     */
    public boolean isConnectionBased() {
        return true;
    }

    /**
     * Tests if the NTLM authentication process has been completed.
     *
     * @return <tt>true</tt> if authorization has been processed
     */
    public boolean isComplete() {
        return state == TYPE3_MSG_GENERATED || state == FAILED;
    }

    /**
     * Not implemented.
     *
     * @param credentials user credentials
     * @param method      method name
     * @param uri         URI
     * @return an NTLM authorization string
     */
    @Deprecated
    public String authenticate(final Credentials credentials, String method, String uri) {
        throw new UnsupportedOperationException();
    }

    /**
     * Produces NTLM authorization string for the given set of
     * {@link Credentials}.
     *
     * @param credentials The set of credentials to be used for authentication
     * @param httpMethod  The method being authenticated
     * @return an NTLM authorization string
     * @throws InvalidCredentialsException if authentication credentials
     *                                     are not valid or not applicable for this authentication scheme
     * @throws AuthenticationException     if authorization string cannot
     *                                     be generated due to an authentication failure
     */
    public String authenticate(Credentials credentials, HttpMethod httpMethod) throws AuthenticationException {
        if (this.state == UNINITIATED) {
            throw new IllegalStateException("NTLM authentication process has not been initiated");
        }

        NTCredentials ntcredentials;
        try {
            ntcredentials = (NTCredentials) credentials;
        } catch (ClassCastException e) {
            throw new InvalidCredentialsException(
                    "Credentials cannot be used for NTLM authentication: "
                            + credentials.getClass().getName());
        }
        String response;
        if (this.state == INITIATED || this.state == FAILED) {
            int flags = NtlmFlags.NTLMSSP_NEGOTIATE_NTLM2 | NtlmFlags.NTLMSSP_NEGOTIATE_ALWAYS_SIGN |
                    NtlmFlags.NTLMSSP_NEGOTIATE_OEM_WORKSTATION_SUPPLIED | NtlmFlags.NTLMSSP_NEGOTIATE_OEM_DOMAIN_SUPPLIED |
                    NtlmFlags.NTLMSSP_NEGOTIATE_NTLM | NtlmFlags.NTLMSSP_REQUEST_TARGET |
                    NtlmFlags.NTLMSSP_NEGOTIATE_OEM | NtlmFlags.NTLMSSP_NEGOTIATE_UNICODE |
                    NtlmFlags.NTLMSSP_NEGOTIATE_56 | NtlmFlags.NTLMSSP_NEGOTIATE_128;
            Type1Message type1Message = new Type1Message(flags, ntcredentials.getDomain(), ntcredentials.getHost());
            response = EncodingUtil.getAsciiString(Base64.encodeBase64(type1Message.toByteArray()));
            this.state = TYPE1_MSG_GENERATED;
        } else {
            int flags = NtlmFlags.NTLMSSP_NEGOTIATE_NTLM2 | NtlmFlags.NTLMSSP_NEGOTIATE_ALWAYS_SIGN |
                    NtlmFlags.NTLMSSP_NEGOTIATE_NTLM | NtlmFlags.NTLMSSP_NEGOTIATE_UNICODE;
            Type3Message type3Message = new Type3Message(type2Message, ntcredentials.getPassword(),
                    ntcredentials.getDomain(), ntcredentials.getUserName(), ntcredentials.getHost(), flags);
            response = EncodingUtil.getAsciiString(Base64.encodeBase64(type3Message.toByteArray()));
            this.state = TYPE3_MSG_GENERATED;
        }
        return "NTLM " + response;
    }


}