import jcifs.smb1.ntlmssp.Type3Message;
import jcifs.smb1.util.Base64;

/**
 * Wraps an <code>HttpURLConnection</code> to provide NTLM authentication
 * services.
 *
 * Please read <a href="../../../httpclient.html">Using jCIFS NTLM Authentication for HTTP Connections</a>.
 */
public class NtlmHttpURLConnection extends HttpURLConnection {

The `password` "flow" is one of the ways ("flows") defined in OAuth2, to handle security and authentication.

OAuth2 was designed so that the backend or API could be independent of the server that authenticates the user.

But in this case, the same **FastAPI** application will handle the API and the authentication.

So, let's review it from that simplified point of view:

                        }
                    }

                    Authentication authentication = new Authentication(server.getUsername(), server.getPassword());
                    authentication.setPrivateKey(server.getPrivateKey());
                    authentication.setPassphrase(server.getPassphrase());

                    repository.setAuthentication(authentication);
                } else {

    // Authentication Type Constants
    // ============================================================

    /** Basic authentication type identifier. */
    public static final String BASIC = "BASIC";

    /** Digest authentication type identifier. */
    public static final String DIGEST = "DIGEST";

    /** NTLM authentication type identifier. */

 */
package org.codelibs.fess.exception;

/**
 * Exception thrown when SSO (Single Sign-On) login operations fail.
 *
 * This exception is used to indicate various SSO authentication failures
 * including configuration errors, authentication token validation failures,
 * communication issues with SSO providers, and other SSO-related problems.
 */
public class SsoLoginException extends FessSystemException {

     */
    @Test
    void testGetAuthType() {
        // Arrange: Define the expected authentication type
        String expectedAuthType = "NTLM";

        // Act: Call the method under test
        String actualAuthType = ntlmRequest.getAuthType();

        // Assert: Verify that the returned authentication type is "NTLM"
        assertEquals(expectedAuthType, actualAuthType, "getAuthType should always return 'NTLM'.");

    /** Whether to send NTLM target name during authentication */
    protected boolean sendNTLMTargetName = true;
    private byte[] machineId;
    /** Username for guest authentication */
    protected String guestUsername = "GUEST";
    /** Password for guest authentication */
    protected String guestPassword = "";
    /** Whether to allow fallback to guest authentication */
    protected boolean allowGuestFallback = false;

import jcifs.Configuration;
import jcifs.internal.SMBProtocolDecodingException;
import jcifs.internal.util.SMBUtil;

/**
 * SMB2 Pre-authentication Integrity Negotiate Context.
 *
 * This negotiate context is used in SMB 3.1.1 to establish
 * pre-authentication integrity protection against downgrade attacks.
 *
 * @author mbechler
 */

        assertThrows(IllegalStateException.class, () -> closedAuth.getPasswordAsCharArray());
    }

    /**
     * Test authentication TTL (Time To Live)
     */
    @Test
    @DisplayName("Test authentication TTL expiration")
    public void testAuthenticationTTL() throws InterruptedException {
        NtlmPasswordAuthenticator auth = new NtlmPasswordAuthenticator("user", "TTLTestPass123!");

          }
        },
        "area": {
          "type": "string",
          "enum": [
            "Aggregations",
            "Allocation",
            "Analysis",
            "Audit",
            "Authentication",
            "Authorization",
            "Autoscaling",
            "CCR",
            "CRUD",
            "Client",
            "Cluster Coordination",
            "Discovery-Plugins",