when(request.getHeader("Authorization")).thenReturn(null);
        when(httpSession.getAttribute("NtlmHttpAuth")).thenReturn(null);

        filter.doFilter(request, response, filterChain);

        verify(response).setStatus(HttpServletResponse.SC_UNAUTHORIZED);
        verify(response).setHeader("WWW-Authenticate", "NTLM");

        TestFilterChain chain = new TestFilterChain();

        manager.process(request, response, chain);

        assertEquals("application/json", response.getHeader("Content-Type"));
        assertEquals("no-cache", response.getHeader("Cache-Control"));
    }

    public void test_matches_withPatternMatching() throws IOException, ServletException {
        // Test regex pattern matching

        ntlmServlet.init(servletConfig);
        when(request.getHeader("Authorization")).thenReturn(null);
        when(request.getSession(false)).thenReturn(null);
        lenient().when(request.isSecure()).thenReturn(true);

        ntlmServlet.service(request, response);

        verify(response).setHeader("WWW-Authenticate", "NTLM");

        // Setup: No "Authorization" header
        when(mockRequest.getHeader("Authorization")).thenReturn(null);

        // Execute
        NtlmPasswordAuthentication result = NtlmSsp.authenticate(mockCifsContext, mockRequest, mockResponse, challenge);

        // Verify
        assertNull(result, "Authentication result should be null");
        verify(mockResponse).setHeader("WWW-Authenticate", "NTLM");

        public String getMethod() {
            return method;
        }

        public void setHeader(String name, String value) {
            if ("Origin".equals(name)) {
                originHeader = value;
            }
        }

        @Override
        public String getHeader(String name) {
            if ("Origin".equals(name)) {
                return originHeader;
            }

        assertEquals("POST", webApiRequest.getMethod());
        assertEquals("/test/uri", webApiRequest.getRequestURI());
        assertEquals(testHeaderValue, webApiRequest.getHeader(testHeader));
    }

    // Test multiple calls to getServletPath
    public void test_getServletPath_multipleCallsReturnSameResult() {
        final String customPath = "/api/v1/consistent";

        return LaRequestUtil.getOptionalRequest().map(req -> {
            for (final Tuple3<String, String, String> host : vHosts) {
                final String headerValue = req.getHeader(host.getValue1());
                if (host.getValue2().equalsIgnoreCase(headerValue)) {
                    return func.apply(host.getValue3());
                }
            }
            return defaultValue;

    public static NtlmPasswordAuthentication authenticate(final CIFSContext tc, final HttpServletRequest req,
            final HttpServletResponse resp, final byte[] challenge) throws IOException {
        String msg = req.getHeader("Authorization");
        if (msg != null && msg.startsWith("NTLM ")) {
            final byte[] src = Base64.decode(msg.substring(5));
            if (src[8] == 1) {

     * @param request The request.
     * @return The access token.
     */
    public String getAccessTokenFromRequest(final HttpServletRequest request) {
        final String token = request.getHeader("Authorization");
        if (token != null) {
            final String[] values = token.trim().split(" ");
            if (values.length == 2 && BEARER.equals(values[0])) {
                return values[1];
            }

    var method: String? = recordedRequest.method
    var path: String? = recordedRequest.path
    var headers: Headers = recordedRequest.headers
    val header: String? = recordedRequest.getHeader("")
    var chunkSizes: List<Int> = recordedRequest.chunkSizes
    var bodySize: Long = recordedRequest.bodySize
    var body: Buffer = recordedRequest.body
    var utf8Body: String = recordedRequest.body.readUtf8()