}

    @ParameterizedTest
    @MethodSource("domains")
    @DisplayName("getUserDomain handles null and empty")
    void getUserDomain_edges(String domain) {
        TestCredentials creds = new TestCredentials(domain, false, false, new Subject(), false);
        assertEquals(domain, creds.getUserDomain());
    }

    static Stream<String> domains() {
        return Stream.of(null, "", "SALES");
    }

* **TCP doesn't know about "domains"**. Only about IP addresses.
    * The information about the **specific domain** requested goes in the **HTTP data**.
* The **HTTPS certificates** "certify" a **certain domain**, but the protocol and encryption happen at the TCP level, **before knowing** which domain is being dealt with.

            this.domainName = domainNameString.check(pacStream.readString());

            // ID for domain (used with relative IDs to get SIDs)
            SID domainId = null;
            if (domainIdPointer != 0) {
                domainId = pacStream.readSid();
            }

            // Extra SIDs data
            PacSidAttributes[] extraSidAtts = {};

        serverData1.sflags = (byte) 0x11;
        serverData1.smaxMpxCount = 100;
        serverData1.oemDomainName = "DOMAIN1";
        serverData1.encryptedPasswords = true;

        serverData2.sflags = (byte) 0x22;
        serverData2.smaxMpxCount = 200;
        serverData2.oemDomainName = "DOMAIN2";
        serverData2.encryptedPasswords = false;

        // Then - instances should be independent

		[size_is(num_sids)] LsarSidPtr *sids;
	} LsarSidArray;

	typedef enum {
		SID_NAME_USE_NONE = 0, /* NOTUSED */
		SID_NAME_USER     = 1, /* user */
		SID_NAME_DOM_GRP  = 2, /* domain group */
		SID_NAME_DOMAIN   = 3, /* domain: don't know what this is */
		SID_NAME_ALIAS    = 4, /* local group */
		SID_NAME_WKN_GRP  = 5, /* well-known group */
		SID_NAME_DELETED  = 6, /* deleted account: needed for c2 rating */

		[size_is(num_sids)] LsarSidPtr *sids;
	} LsarSidArray;

	typedef enum {
		SID_NAME_USE_NONE = 0, /* NOTUSED */
		SID_NAME_USER     = 1, /* user */
		SID_NAME_DOM_GRP  = 2, /* domain group */
		SID_NAME_DOMAIN   = 3, /* domain: don't know what this is */
		SID_NAME_ALIAS    = 4, /* local group */
		SID_NAME_WKN_GRP  = 5, /* well-known group */
		SID_NAME_DELETED  = 6, /* deleted account: needed for c2 rating */

		if result != etcdPathSeparator+path+"/local/skydns/staging/service" {
			t.Errorf("Failure to get domain's path with prefix: %s", result)
		}
	}
}

func TestUnPath(t *testing.T) {
	result1 := msgUnPath("/skydns/local/cluster/staging/service/")
	if result1 != "service.staging.cluster.local.skydns" {
		t.Errorf("Failure to get domain from etcd key (with a trailing '/'), expect: 'service.staging.cluster.local.', actually get: '%s'", result1)
	}

        String root = "share";
        String path = "\\folder";
        String fullPath = "\\" + domain + "\\" + root + path; // Should be "\domain.com\share\folder"

        lenient().when(smbTransport.getDfsReferrals(auth, fullPath, 0)).thenReturn(dfsReferral);

        assertEquals(dfsReferral, dfs.getReferral(smbTransport, domain, root, path, auth));
    }

    @Test

// A cross-domain policy file is an XML document that grants a web client, such as Adobe Flash Player
// or Adobe Acrobat (though not necessarily limited to these), permission to handle data across domains.
// When clients request content hosted on a particular source domain and that content make requests
// directed towards a domain other than its own, the remote domain needs to host a cross-domain

* **TCP weiß nichts über „Domains“**. Nur über IP-Adressen.
    * Die Informationen über die angeforderte **spezifische Domain** befinden sich in den **HTTP-Daten**.
* Die **HTTPS-Zertifikate** „zertifizieren“ eine **bestimmte Domain**, aber das Protokoll und die Verschlüsselung erfolgen auf TCP-Ebene, **ohne zu wissen**, um welche Domain es sich handelt.