Preferred bug tracker

Please visit the preferred bug tracker to report your issue.

This queue is for tickets about the libwww-perl CPAN distribution.

Report information
The Basics
Id:
43354
Status:
resolved
Priority:
Low/Low
Queue:

People
Owner:
Nobody in particular
Requestors:
mijkenator [...] gmail.com
Cc:
AdminCc:

BugTracker
Severity:
Important
Broken in:
(no value)
Fixed in:
6.08



Subject: Error in Authentication Digest Implementation()
LWP send auth request Proxy-Authorization: Digest ....... nc="00000001", ..... but RFC 2617 required for attribute nc following syntax: nonce-count = "nc" "=" nc-value nc-value = 8LHEX (unquoted-string) error in LWP::Authen::Digest : for (@order) { next unless defined $resp{$_}; push(@pairs, "$_=" . qq("$resp{$_}")) } change it to for (@order) { next unless defined $resp{$_}; if($_ eq 'nc'){ push(@pairs, "$_=" .qq($resp{$_})) }else{ push(@pairs, "$_=" . qq("$resp{$_}")) } }
From: chiborator@gmail.com
Hi, the bug is still present in the current version of the library - 6.02. It effectively prevents GET requests to resources protected with Digest authentication using LWP::UserAgent. A possible fix is: (the diff is for libwww 5.837) LWP/Authen/Digest.pm @@ -58,7 +58,7 @@ my @pairs; for (@order) { next unless defined $resp{$_}; - push(@pairs, "$_=" . qq("$resp{$_}")); + push(@pairs, "$_=" . ($_ eq 'nc' ? $resp{$_} : qq("$resp{$_}"))); } my $auth_value = "Digest " . join(", ", @pairs); Thank you for the efforts! Stoian
On Fri May 20 07:28:17 2011, chiborator wrote:
Show quoted text
> Hi, > the bug is still present in the current version of the library - 6.02. > It effectively prevents GET requests to resources protected with Digest > authentication using LWP::UserAgent. > > A possible fix is: > (the diff is for libwww 5.837) > > LWP/Authen/Digest.pm > > @@ -58,7 +58,7 @@ > my @pairs; > for (@order) { > next unless defined $resp{$_}; > - push(@pairs, "$_=" . qq("$resp{$_}")); > + push(@pairs, "$_=" . ($_ eq 'nc' ? $resp{$_} : qq("$resp{$_}"))); > } > > my $auth_value = "Digest " . join(", ", @pairs); > > > > Thank you for the efforts! > > Stoian
Hi, The bug is fixed in LWP 6.08
On Mon Dec 22 11:02:31 2014, JORISD wrote:
Show quoted text
> On Fri May 20 07:28:17 2011, chiborator wrote:
> > Hi, > > the bug is still present in the current version of the library - 6.02. > > It effectively prevents GET requests to resources protected with Digest > > authentication using LWP::UserAgent. > > > > A possible fix is: > > (the diff is for libwww 5.837) > > > > LWP/Authen/Digest.pm > > > > @@ -58,7 +58,7 @@ > > my @pairs; > > for (@order) { > > next unless defined $resp{$_}; > > - push(@pairs, "$_=" . qq("$resp{$_}")); > > + push(@pairs, "$_=" . ($_ eq 'nc' ? $resp{$_} : qq("$resp{$_}"))); > > } > > > > my $auth_value = "Digest " . join(", ", @pairs); > > > > > > > > Thank you for the efforts! > > > > Stoian
> > Hi, > > The bug is fixed in LWP 6.08
Thanks!


This service runs on Request Tracker, is sponsored by The Perl Foundation, and maintained by Best Practical Solutions.

Please report any issues with rt.cpan.org to rt-cpan-admin@bestpractical.com.