Bei HTTP Basic Auth erwartet die Anwendung einen Header, der einen Benutzernamen und ein Passwort enthält.

Wenn sie diesen nicht empfängt, gibt sie den HTTP-Error 401 „Unauthorized“ zurück.

Und gibt einen Header `WWW-Authenticate` mit dem Wert `Basic` und einem optionalen <abbr title="Bereich">`realm`</abbr>-Parameter zurück.

Dadurch wird der Browser angewiesen, die integrierte Eingabeaufforderung für einen Benutzernamen und ein Passwort anzuzeigen.

 * under the License.
 */

/**
 * Contains classes for managing Maven settings, including global and user-specific
 * configuration stored in settings.xml files. These settings control repository access,
 * authentication, proxies, and other Maven runtime behaviors.
 *
 * @since 4.0.0
 */

 *
 *  * A DNS lookup failed
 *  * The configuration is incapable of carrying the request, such as when the client is configured
 *    to use `H2_PRIOR_KNOWLEDGE` but the URL's scheme is `https:`.
 *  * Preemptive proxy authentication failed.
 *
 * Planning failures are not necessarily fatal. For example, even if we can't DNS lookup the first
 * proxy in a list, looking up a subsequent one may succeed.
 */
internal class FailedPlan(
  e: Throwable,

 */
package jcifs.smb;

/**
 * Handler for SMB session setup operations.
 *
 * This interface defines methods for handling the session
 * setup process in SMB authentication.
 *
 * @author mbechler
 */
public interface SessionSetupHandler {

# ==============================================================================
# Sourcing this enables Bazel remote cache (read and write)
# Note that "_push" cache configs write to GCS buckets and require
# authentication. If you are not a Googler, source "public_cache" to enable the
# public read-only cache.
# The cache configs are different for MacOS and Linux
if [[ $(uname -s) == "Darwin" ]]; then

 */

package jcifs.smb1.smb1;

import java.io.Serializable;

import jcifs.smb1.UniAddress;
import jcifs.smb1.util.Hexdump;

/**
 * Represents an NTLM authentication challenge in SMB1 protocol.
 */
public final class NtlmChallenge implements Serializable {

    /**
     * The NTLM challenge bytes received from the server.
     */
    public byte[] challenge;
    /**

 * Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA
 */
package jcifs.ntlmssp.av;

/**
 * NTLMSSP AV pair representing channel binding information for enhanced security.
 * Used to bind NTLM authentication to specific communication channels.
 *
 * @author mbechler
 */
public class AvChannelBindings extends AvPair {

    /**
     * Constructs an AV channel bindings pair

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import jcifs.CIFSContext;

/**
 * A <code>URLStreamHandler</code> used to provide NTLM authentication
 * capabilities to the default HTTP handler. This acts as a wrapper,
 * handling authentication and passing control to the underlying
 * stream handler.
 *
 * @deprecated {@link NtlmHttpURLConnection} is broken by design.
 */
@Deprecated

     */
    @Required
    @Size(max = 1000)
    public String name;

    /**
     * The actual access token string.
     * This is the token value that will be used for authentication.
     * Maximum length is 10000 characters.
     */
    @Size(max = 10000)
    public String token;

    /**
     * The permissions associated with this access token.

        String expected = "a]".repeat(1000) + "\\2a";
        assertEquals(expected, LdapUtil.escapeValue(input));
    }

    @Test
    public void test_escapeValue_realWorldLdapInjectionAttempts() {
        // Authentication bypass attempt
        assertEquals("\\2a", LdapUtil.escapeValue("*"));

        // Filter injection to match any user
        assertEquals("\\2a\\29\\28|\\28cn=\\2a", LdapUtil.escapeValue("*)(|(cn=*"));