*/
package org.codelibs.fess.crawler.client.http.ntlm;

import org.apache.http.auth.AuthScheme;
import org.apache.http.auth.AuthSchemeProvider;
import org.apache.http.impl.auth.NTLMScheme;
import org.apache.http.protocol.HttpContext;

/**
 * This class is AuthSchemeFactory implementation for NTLM.
 *
 * @author shinsuke
 *
 */
public class NTLMSchemeProvider implements AuthSchemeProvider {

    /**

                    final String protocol = url.getProtocol();
                    int port = url.getPort();
                    if (port == -1) {
                        port = "https".equalsIgnoreCase(protocol) ? 443 : 80;
                    }
                    final PasswordAuthentication auth = Authenticator.requestPasswordAuthentication(null, port, protocol, "", authMethod);
                    if (auth == null) {

* Le cryptage de la connexion se fait au niveau du protocole TCP.
    * C'est une couche en dessous de HTTP.
    * Donc, le certificat et le traitement du cryptage sont faits avant HTTP.
* TCP ne connaît pas les "domaines", seulement les adresses IP.
    * L'information sur le domaine spécifique demandé se trouve dans les données HTTP.

     */
    boolean isDfsConvertToFQDN();

    /**
     * Minimum protocol version
     *
     * Property {@code jcifs.smb.client.minVersion} (string, default SMB1)
     *
     * @see DialectVersion
     * @return minimum protocol version to use/allow
     * @since 2.1
     */
    DialectVersion getMinimumVersion();

    /**
     * Maximum protocol version
     *

import org.lastaflute.web.login.credential.LoginCredential;

/**
 * SPNEGO authentication credential implementation.
 *
 * This class represents login credentials obtained through SPNEGO (Security Provider
 * Negotiation Protocol) authentication. It contains the username extracted from the
 * SPNEGO authentication process, typically from a Kerberos ticket.
 */
public class SpnegoCredential implements LoginCredential, FessCredential {

    streamId: Int,
    associatedStreamId: Int,
    headerBlock: List<Header>,
  ) {
    fail("")
  }

  override fun alternateService(
    streamId: Int,
    origin: String,
    protocol: ByteString,
    host: String,
    port: Int,
    maxAge: Long,
  ) {
    fail("")
  }

This is not a limitation of **FastAPI**, it's part of the HTTP protocol.

///

## Recap { #recap }

## 2. Protocol Specification Reference

- **MS-SMBD**: SMB2 Remote Direct Memory Access (RDMA) Transport Protocol
- **MS-SMB2 Section 2.2.3.1.1**: SMB2 Negotiate Protocol Request with RDMA
- **MS-SMB2 Section 3.1.5.2**: RDMA Transport Connection
- **RFC 5040**: A Remote Direct Memory Access Protocol Specification
- **RFC 5041**: Direct Data Placement over Reliable Transports

    calls.add(
      "host=$requestingHost port=$requestingPort site=${requestingSite.hostName} " +
        "url=$requestingURL type=$requestorType prompt=$requestingPrompt " +
        "protocol=$requestingProtocol scheme=$requestingScheme",
    )
    return authentication
  }

  companion object {
    /** base64("username:password")  */
    const val BASE_64_CREDENTIALS = "dXNlcm5hbWU6cGFzc3dvcmQ="
  }

	public fun callStart (Lokhttp3/Call;)V
	public fun canceled (Lokhttp3/Call;)V
	public fun connectEnd (Lokhttp3/Call;Ljava/net/InetSocketAddress;Ljava/net/Proxy;Lokhttp3/Protocol;)V
	public fun connectFailed (Lokhttp3/Call;Ljava/net/InetSocketAddress;Ljava/net/Proxy;Lokhttp3/Protocol;Ljava/io/IOException;)V
	public fun connectStart (Lokhttp3/Call;Ljava/net/InetSocketAddress;Ljava/net/Proxy;)V
	public fun connectionAcquired (Lokhttp3/Call;Lokhttp3/Connection;)V