Prep 5.11.3

2025-07-19 05:09:42 +02:00 · 2024-02-16 10:53:02 -05:00 · 2024-02-16 10:53:02 -05:00 · f2ba294be8
commit f2ba294be8
parent 69940cb7f1
47 changed files with 169 additions and 3090 deletions
--- a/vendor/github.com/Azure/go-ntlmssp/negotiator.go
+++ b/vendor/github.com/Azure/go-ntlmssp/negotiator.go
@ -10,22 +10,15 @@ import (
 )

 // GetDomain : parse domain name from based on slashes in the input
-// Need to check for upn as well
-func GetDomain(user string) (string, string, bool) {
+func GetDomain(user string) (string, string) {
 	domain := ""
-	domainNeeded := false

 	if strings.Contains(user, "\\") {
 		ucomponents := strings.SplitN(user, "\\", 2)
 		domain = ucomponents[0]
 		user = ucomponents[1]
-		domainNeeded = true
-	} else if strings.Contains(user, "@") {
-		domainNeeded = false
-	} else {
-		domainNeeded = true
 	}
-	return user, domain, domainNeeded
+	return user, domain
 }

 //Negotiator is a http.Roundtripper decorator that automatically
@ -41,11 +34,10 @@ func (l Negotiator) RoundTrip(req *http.Request) (res *http.Response, err error)
 		rt = http.DefaultTransport
 	}
 	// If it is not basic auth, just round trip the request as usual
-	reqauth := authheader(req.Header.Values("Authorization"))
+	reqauth := authheader(req.Header.Get("Authorization"))
 	if !reqauth.IsBasic() {
 		return rt.RoundTrip(req)
 	}
-	reqauthBasic := reqauth.Basic()
 	// Save request body
 	body := bytes.Buffer{}
 	if req.Body != nil {
@ -67,10 +59,11 @@ func (l Negotiator) RoundTrip(req *http.Request) (res *http.Response, err error)
 	if res.StatusCode != http.StatusUnauthorized {
 		return res, err
 	}
-	resauth := authheader(res.Header.Values("Www-Authenticate"))
+
+	resauth := authheader(res.Header.Get("Www-Authenticate"))
 	if !resauth.IsNegotiate() && !resauth.IsNTLM() {
 		// Unauthorized, Negotiate not requested, let's try with basic auth
-		req.Header.Set("Authorization", string(reqauthBasic))
+		req.Header.Set("Authorization", string(reqauth))
 		io.Copy(ioutil.Discard, res.Body)
 		res.Body.Close()
 		req.Body = ioutil.NopCloser(bytes.NewReader(body.Bytes()))
@ -82,7 +75,7 @@ func (l Negotiator) RoundTrip(req *http.Request) (res *http.Response, err error)
 		if res.StatusCode != http.StatusUnauthorized {
 			return res, err
 		}
-		resauth = authheader(res.Header.Values("Www-Authenticate"))
+		resauth = authheader(res.Header.Get("Www-Authenticate"))
 	}

 	if resauth.IsNegotiate() || resauth.IsNTLM() {
@ -98,7 +91,7 @@ func (l Negotiator) RoundTrip(req *http.Request) (res *http.Response, err error)

 		// get domain from username
 		domain := ""
-		u, domain, domainNeeded := GetDomain(u)
+		u, domain = GetDomain(u)

 		// send negotiate
 		negotiateMessage, err := NewNegotiateMessage(domain, "")
@ -119,7 +112,7 @@ func (l Negotiator) RoundTrip(req *http.Request) (res *http.Response, err error)
 		}

 		// receive challenge?
-		resauth = authheader(res.Header.Values("Www-Authenticate"))
+		resauth = authheader(res.Header.Get("Www-Authenticate"))
 		challengeMessage, err := resauth.GetData()
 		if err != nil {
 			return nil, err
@ -132,7 +125,7 @@ func (l Negotiator) RoundTrip(req *http.Request) (res *http.Response, err error)
 		res.Body.Close()

 		// send authenticate
-		authenticateMessage, err := ProcessChallenge(challengeMessage, u, p, domainNeeded)
+		authenticateMessage, err := ProcessChallenge(challengeMessage, u, p)
 		if err != nil {
 			return nil, err
 		}