*
     * @param url the URL that requires authentication
     * @param sae the authentication exception that was thrown
     * @return credentials returned by prompt
     */
    public static NtlmPasswordAuthenticator requestNtlmPasswordAuthentication(final String url, final SmbAuthException sae) {
        return requestNtlmPasswordAuthentication(auth, url, sae);
    }

    /**

            this.encryptionKey = new byte[0];
        }
    }

    @Test
    void anonymousGuestCredentials() throws Exception {
        setupNegotiateStubs();

        NtlmPasswordAuthenticator auth = mock(NtlmPasswordAuthenticator.class);
        when(auth.isAnonymous()).thenReturn(true);
        when(auth.isGuest()).thenReturn(true);
        when(auth.getUsername()).thenReturn("guest");

 * See {@link jcifs.Configuration#isDfsConvertToFQDN()} for a workaround.
 */
public class Kerb5Authenticator extends NtlmPasswordAuthenticator {

    private static final long serialVersionUID = 1999400043787454432L;
    private static final Logger log = LoggerFactory.getLogger(Kerb5Authenticator.class);
    private static final String DEFAULT_SERVICE = "cifs";

 */
package jcifs.context;

import jcifs.CIFSContext;
import jcifs.Credentials;
import jcifs.smb.CredentialsInternal;
import jcifs.smb.NtlmAuthenticator;
import jcifs.smb.NtlmPasswordAuthenticator;
import jcifs.smb.SmbAuthException;
import jcifs.smb.SmbRenewableCredentials;

/**
 * Context wrapper supplying alternate credentials
 *
 * @author mbechler
 *
 */

        // Token advertising Kerberos mech (so foundKerberos == true), but forceFallback should still route to NTLM
        byte[] init = spnegoInitWithMechs(Kerb5Context.SUPPORTED_MECHS);

        // NtlmPasswordAuthenticator#createContext will inspect mechs and throw because NTLM is not advertised
        SmbUnsupportedOperationException ex =

        final String defDomain = config.getDefaultDomain();
        if (defUser != null) {
            this.defaultCredentials = new NtlmPasswordAuthenticator(defDomain, defUser, defPassword);
        } else {
            this.defaultCredentials = new NtlmPasswordAuthenticator();
        }
    }

    /**
     * {@inheritDoc}
     *

import jcifs.Configuration;
import jcifs.SmbConstants;
import jcifs.internal.smb1.AndXServerMessageBlock;
import jcifs.internal.smb1.ServerMessageBlock;
import jcifs.internal.util.SMBUtil;
import jcifs.smb.NtlmPasswordAuthenticator;
import jcifs.smb.SmbException;

/**
 * SMB1 Session Setup AndX request message.
 *
 * This command is used to authenticate a user session and
 * establish security context for subsequent operations.
 */

import org.mockito.Mock;
import org.mockito.MockedStatic;
import org.mockito.MockitoAnnotations;

import jcifs.Credentials;
import jcifs.smb.CredentialsInternal;
import jcifs.smb.NtlmAuthenticator;
import jcifs.smb.NtlmPasswordAuthenticator;
import jcifs.smb.SmbAuthException;
import jcifs.smb.SmbRenewableCredentials;

class CIFSContextCredentialWrapperTest {

    @Mock
    private AbstractCIFSContext mockDelegate;
    @Mock

        } catch (final IllegalArgumentException e) {
            log.error("Failed to parse OID", e);
        }
    }

    private final NtlmPasswordAuthenticator auth;
    private int ntlmsspFlags;
    private final String workstation;
    private boolean isEstablished = false;
    private byte[] serverChallenge = null;
    private byte[] masterKey = null;

        assertSame(creds, unwrapped, "unwrap returns the same object instance");

        // unwrap to unrelated type should return null (use another Credentials implementation)
        assertNull(creds.unwrap(NtlmPasswordAuthenticator.class), "unwrap to unrelated type returns null");

        // domain and flags are surfaced as given
        assertEquals("DOMAIN", creds.getUserDomain());
        assertEquals(anonymous, creds.isAnonymous());