jcifs.http

Class NtlmHttpFilter

public class NtlmHttpFilter extends Object implements Filter

This servlet Filter can be used to negotiate password hashes with MSIE clients using NTLM SSP. This is similar to Authentication: BASIC but weakly encrypted and without requiring the user to re-supply authentication credentials.

Read jCIFS NTLM HTTP Authentication and the Network Explorer Servlet for complete details.

Method Summary
voiddestroy()
voiddoFilter(ServletRequest request, ServletResponse response, FilterChain chain)
This method simply calls negotiate( req, resp, false ) and then chain.doFilter.
FilterConfiggetFilterConfig()
voidinit(FilterConfig filterConfig)
protected NtlmPasswordAuthenticationnegotiate(HttpServletRequest req, HttpServletResponse resp, boolean skipAuthentication)
Negotiate password hashes with MSIE clients using NTLM SSP
voidsetFilterConfig(FilterConfig f)

Method Detail

destroy

public void destroy()

doFilter

public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain)
This method simply calls negotiate( req, resp, false ) and then chain.doFilter. You can override and call negotiate manually to achive a variety of different behavior.

getFilterConfig

public FilterConfig getFilterConfig()

init

public void init(FilterConfig filterConfig)

negotiate

protected NtlmPasswordAuthentication negotiate(HttpServletRequest req, HttpServletResponse resp, boolean skipAuthentication)
Negotiate password hashes with MSIE clients using NTLM SSP

Parameters: req The servlet request resp The servlet response skipAuthentication If true the negotiation is only done if it is initiated by the client (MSIE post requests after successful NTLM SSP authentication). If false and the user has not been authenticated yet the client will be forced to send an authentication (server sends HttpServletResponse.SC_UNAUTHORIZED).

Returns: True if the negotiation is complete, otherwise false

setFilterConfig

public void setFilterConfig(FilterConfig f)