private final String domain;
        private final boolean anonymous;
        private final boolean guest;
        private final Subject subject;
        private final boolean failOnRefresh;

        TestCredentials(String domain, boolean anonymous, boolean guest, Subject subject, boolean failOnRefresh) {
            this.domain = domain;
            this.anonymous = anonymous;
            this.guest = guest;

		}
	}

	// Test for Anonymous/unsigned http request.
	anonReq, err := newTestRequest(http.MethodHead, getHEADBucketURL("", bucketName), 0, nil)
	if err != nil {
		t.Fatalf("MinIO %s: Failed to create an anonymous request for bucket \"%s\": <ERROR> %v",
			instanceType, bucketName, err)
	}

	// ExecObjectLayerAPIAnonTest - Calls the HTTP API handler using the anonymous request, validates the ErrAccessDeniedResponse,

    }

    // Test ANONYMOUS constant
    @Test
    void testAnonymousConstant() {
        assertNotNull(NtlmPasswordAuthentication.ANONYMOUS);
        assertEquals("", NtlmPasswordAuthentication.ANONYMOUS.getDomain());
        assertEquals("", NtlmPasswordAuthentication.ANONYMOUS.getUsername());
        assertEquals("", NtlmPasswordAuthentication.ANONYMOUS.getPassword());
    }

        bufferIndex += securityBufferLength;

        return bufferIndex - start;
    }

    /**
     * Checks whether the session is either anonymous or a guest session
     *
     * @return whether the session is either anonymous or a guest session
     */
    public boolean isLoggedInAsGuest() {
        return (this.sessionFlags & (SMB2_SESSION_FLAGS_IS_GUEST | SMB2_SESSION_FLAGS_IS_NULL)) != 0;
    }

			}
		}
	}

	// Test for Anonymous/unsigned http request.
	// Bucket policy related functions doesn't support anonymous requests, setting policies shouldn't make a difference.
	// create unsigned HTTP request for PutBucketPolicyHandler.
	anonReq, err := newTestRequest(http.MethodGet, getPutPolicyURL("", bucketName), 0, nil)
	if err != nil {
		t.Fatalf("MinIO %s: Failed to create an anonymous request for bucket \"%s\": <ERROR> %v",

	// Colorize the message and print.
	logger.Startup(color.Blue("API: ") + color.Bold(fmt.Sprintf("%s ", apiEndpointStr)))
	if color.IsTerminal() && (!globalServerCtxt.Anonymous && !globalServerCtxt.JSON && globalAPIConfig.permitRootAccess()) {
		logger.Startup(color.Blue("   RootUser: ") + color.Bold("%s ", cred.AccessKey))
		logger.Startup(color.Blue("   RootPass: ") + color.Bold("%s \n", cred.SecretKey))

        byte[] token = negoResp.getSecurityBlob();
        final int securityMode = negoResp.getSecurityMode();
        boolean anonymous = this.credentials.isAnonymous();
        final boolean doSigning = securityMode != 0 && !anonymous;
        long newSessId = 0;
        long curSessId = this.sessionId;

        synchronized (trans) {
            this.credentials.refresh();

        assertTrue(npe2.getMessage().contains("non-null"));
        verifyNoInteractions(mockDir);
    }

    /**
     * Sanity: implementing via an anonymous class works the same as a lambda.
     */
    @Test
    @DisplayName("anonymous class implementation behaves correctly")
    void anonymousClassImplementation() throws Exception {
        SmbFilenameFilter filter = new SmbFilenameFilter() {

    /**
     * Get the domain of the user account.
     * @return the domain the user account is in
     */
    String getUserDomain();

    /**
     * Check if these are anonymous credentials.
     * @return whether these are anonymous credentials
     */
    boolean isAnonymous();

    /**
     * Check if these are guest credentials.
     * @return whether these are guest credentials
     */
    boolean isGuest();

     *
     * @return a child context using the configured default credentials
     */
    CIFSContext withDefaultCredentials();

    /**
     * Create a child context with anonymous credentials
     *
     * @return a child context using anonymous credentials
     */
    CIFSContext withAnonymousCredentials();

    /**
     * Create a child context with guest credentials
     *