Changeset 59185 in webkit

Timestamp:

May 11, 2010 4:41:25 PM (14 years ago)

Author:

ap@apple.com

Message:

Reviewed by Brady Eidson.

​https://bugs.webkit.org/show_bug.cgi?id=37989
Safari (still) doesn't always send basic credentials preemptively

Test: http/tests/xmlhttprequest/basic-auth-default.html

After fetching credentials from WebCore storage, put them back right away. This will add
default credentials for the directory, since this may be the first time we learn about its
associated protection space.

• platform/network/cf/ResourceHandleCFNet.cpp: (WebCore::ResourceHandle::didReceiveAuthenticationChallenge): (WebCore::WebCoreSynchronousLoader::didReceiveChallenge):
• platform/network/mac/ResourceHandleMac.mm: (WebCore::ResourceHandle::didReceiveAuthenticationChallenge): (-[WebCoreSynchronousLoader connection:didReceiveAuthenticationChallenge:]):

Location:

trunk

Files:

• LayoutTests/ChangeLog (modified) (1 diff)
• LayoutTests/http/tests/xmlhttprequest/basic-auth-default-expected.txt (added)
• LayoutTests/http/tests/xmlhttprequest/basic-auth-default.html (added)
• LayoutTests/http/tests/xmlhttprequest/resources/basic-auth-default (added)
• LayoutTests/http/tests/xmlhttprequest/resources/basic-auth-default/dir1 (added)
• LayoutTests/http/tests/xmlhttprequest/resources/basic-auth-default/dir1/basic-auth.php (added)
• LayoutTests/http/tests/xmlhttprequest/resources/basic-auth-default/dir2 (added)
• LayoutTests/http/tests/xmlhttprequest/resources/basic-auth-default/dir2/basic-auth.php (added)
• LayoutTests/http/tests/xmlhttprequest/resources/basic-auth-default/dir2/catch.php (added)
• WebCore/ChangeLog (modified) (1 diff)
• WebCore/platform/network/cf/ResourceHandleCFNet.cpp (modified) (3 diffs)
• WebCore/platform/network/mac/ResourceHandleMac.mm (modified) (2 diffs)

trunk/LayoutTests/ChangeLog

@@ +1 @@
+2010-05-11  Alexey Proskuryakov  <ap@apple.com>
+
+        Reviewed by Brady Eidson.
+
+        https://bugs.webkit.org/show_bug.cgi?id=37989
+        Safari (still) doesn't always send basic credentials preemptively
+
+        These resources shouldn't be reused for any other test.
+
+        * http/tests/xmlhttprequest/basic-auth-default-expected.txt: Added.
+        * http/tests/xmlhttprequest/basic-auth-default.html: Added.
+        * http/tests/xmlhttprequest/resources/basic-auth-default: Added.
+        * http/tests/xmlhttprequest/resources/basic-auth-default/dir1: Added.
+        * http/tests/xmlhttprequest/resources/basic-auth-default/dir1/basic-auth.php: Added.
+        * http/tests/xmlhttprequest/resources/basic-auth-default/dir2: Added.
+        * http/tests/xmlhttprequest/resources/basic-auth-default/dir2/basic-auth.php: Added.
+        * http/tests/xmlhttprequest/resources/basic-auth-default/dir2/catch.php: Added.
+
 2010-05-11  Jian Li  <jianli@chromium.org>
 

trunk/WebCore/ChangeLog

@@ +1 @@
+2010-05-11  Alexey Proskuryakov  <ap@apple.com>
+
+        Reviewed by Brady Eidson.
+
+        https://bugs.webkit.org/show_bug.cgi?id=37989
+        Safari (still) doesn't always send basic credentials preemptively
+
+        Test: http/tests/xmlhttprequest/basic-auth-default.html
+
+        After fetching credentials from WebCore storage, put them back right away. This will add
+        default credentials for the directory, since this may be the first time we learn about its
+        associated protection space.
+
+        * platform/network/cf/ResourceHandleCFNet.cpp:
+        (WebCore::ResourceHandle::didReceiveAuthenticationChallenge):
+        (WebCore::WebCoreSynchronousLoader::didReceiveChallenge):
+        * platform/network/mac/ResourceHandleMac.mm:
+        (WebCore::ResourceHandle::didReceiveAuthenticationChallenge):
+        (-[WebCoreSynchronousLoader connection:didReceiveAuthenticationChallenge:]):
+
 2010-05-11  Kevin Watters  <kevinwatters@gmail.com>
 

trunk/WebCore/platform/network/cf/ResourceHandleCFNet.cpp

@@ -515 +515 @@
         if (!credential.isEmpty() && credential != d->m_initialCredential) {
             ASSERT(credential.persistence() == CredentialPersistenceNone);
+            if (challenge.failureResponse().httpStatusCode() == 401) {
+                // Store the credential back, possibly adding it as a default for this directory.
+                CredentialStorage::set(credential, challenge.protectionSpace(), d->m_request.url());
+            }
             RetainPtr<CFURLCredentialRef> cfCredential(AdoptCF, createCF(credential));
             CFURLConnectionUseCredential(d->m_connection.get(), cfCredential.get(), challenge.cfURLAuthChallengeRef());
@@ -725 +729 @@
     WebCoreSynchronousLoader* loader = static_cast<WebCoreSynchronousLoader*>(const_cast<void*>(clientInfo));
 
+    CFURLResponseRef urlResponse = (CFURLResponseRef)CFURLAuthChallengeGetFailureResponse(challenge);
+    CFHTTPMessageRef httpResponse = urlResponse ? CFURLResponseGetHTTPResponse(urlResponse) : 0;
+
     if (loader->m_user && loader->m_pass) {
         Credential credential(loader->m_user.get(), loader->m_pass.get(), CredentialPersistenceNone);
         RetainPtr<CFURLCredentialRef> cfCredential(AdoptCF, createCF(credential));
         
-        CFURLResponseRef urlResponse = (CFURLResponseRef)CFURLAuthChallengeGetFailureResponse(challenge);
-        CFHTTPMessageRef httpResponse = urlResponse ? CFURLResponseGetHTTPResponse(urlResponse) : 0;
         KURL urlToStore;
         if (httpResponse && CFHTTPMessageGetResponseStatusCode(httpResponse) == 401)
@@ -746 +751 @@
         if (!credential.isEmpty() && credential != loader->m_initialCredential) {
             ASSERT(credential.persistence() == CredentialPersistenceNone);
+            if (httpResponse && CFHTTPMessageGetResponseStatusCode(httpResponse) == 401) {
+                // Store the credential back, possibly adding it as a default for this directory.
+                CredentialStorage::set(credential, core(CFURLAuthChallengeGetProtectionSpace(challenge)), loader->m_url.get());
+            }
             RetainPtr<CFURLCredentialRef> cfCredential(AdoptCF, createCF(credential));
             CFURLConnectionUseCredential(conn, cfCredential.get(), challenge);

trunk/WebCore/platform/network/mac/ResourceHandleMac.mm

@@ -544 +544 @@
         if (!credential.isEmpty() && credential != d->m_initialCredential) {
             ASSERT(credential.persistence() == CredentialPersistenceNone);
+            if (challenge.failureResponse().httpStatusCode() == 401) {
+                // Store the credential back, possibly adding it as a default for this directory.
+                CredentialStorage::set(credential, challenge.protectionSpace(), d->m_request.url());
+            }
             [challenge.sender() useCredential:mac(credential) forAuthenticationChallenge:mac(challenge)];
             return;
@@ -1035 +1039 @@
         if (!credential.isEmpty() && credential != m_initialCredential) {
             ASSERT(credential.persistence() == CredentialPersistenceNone);
+            if ([[challenge failureResponse] isKindOfClass:[NSHTTPURLResponse class]] && [(NSHTTPURLResponse *)[challenge failureResponse] statusCode] == 401) {
+                // Store the credential back, possibly adding it as a default for this directory.
+                CredentialStorage::set(credential, core([challenge protectionSpace]), m_url);
+            }
             [[challenge sender] useCredential:mac(credential) forAuthenticationChallenge:challenge];
             return;