[Pkg-owncloud-commits] [owncloud-client] 55/498: HTTP Creds: Do not send the password at every request
Sandro Knauß
hefee-guest at moszumanska.debian.org
Tue Aug 11 14:48:34 UTC 2015
This is an automated email from the git hooks/post-receive script.
hefee-guest pushed a commit to branch master
in repository owncloud-client.
commit ae17f58b80208df0e6318dbabbfabd7ae842332e
Author: Olivier Goffart <ogoffart at woboq.com>
Date: Mon Apr 27 16:28:37 2015 +0200
HTTP Creds: Do not send the password at every request
---
src/libsync/creds/httpcredentials.cpp | 41 ++++++++++++-----------------------
1 file changed, 14 insertions(+), 27 deletions(-)
diff --git a/src/libsync/creds/httpcredentials.cpp b/src/libsync/creds/httpcredentials.cpp
index 0dd0e74..6fada53 100644
--- a/src/libsync/creds/httpcredentials.cpp
+++ b/src/libsync/creds/httpcredentials.cpp
@@ -16,6 +16,7 @@
#include <QMutex>
#include <QDebug>
#include <QNetworkReply>
+#include <QAuthenticator>
#include <QSettings>
#include <QInputDialog>
@@ -80,22 +81,6 @@ const char certifPasswdC[] = "certificatePasswd";
const char authenticationFailedC[] = "owncloud-authentication-failed";
} // ns
-class HttpCredentialsAccessManager : public AccessManager {
-public:
- HttpCredentialsAccessManager(const HttpCredentials *cred, QObject* parent = 0)
- : AccessManager(parent), _cred(cred) {}
-protected:
- QNetworkReply *createRequest(Operation op, const QNetworkRequest &request, QIODevice *outgoingData) Q_DECL_OVERRIDE {
- QByteArray credHash = QByteArray(_cred->user().toUtf8()+":"+_cred->password().toUtf8()).toBase64();
- QNetworkRequest req(request);
- req.setRawHeader(QByteArray("Authorization"), QByteArray("Basic ") + credHash);
- //qDebug() << "Request for " << req.url() << "with authorization" << QByteArray::fromBase64(credHash);
- return AccessManager::createRequest(op, req, outgoingData);
- }
-private:
- const HttpCredentials *_cred;
-};
-
HttpCredentials::HttpCredentials()
: _user(),
_password(),
@@ -188,7 +173,7 @@ QString HttpCredentials::certificatePasswd() const
QNetworkAccessManager* HttpCredentials::getQNAM() const
{
- AccessManager* qnam = new HttpCredentialsAccessManager(this);
+ AccessManager* qnam = new AccessManager;
connect( qnam, SIGNAL(authenticationRequired(QNetworkReply*, QAuthenticator*)),
this, SLOT(slotAuthentication(QNetworkReply*,QAuthenticator*)));
@@ -249,10 +234,7 @@ void HttpCredentials::fetch()
}
bool HttpCredentials::stillValid(QNetworkReply *reply)
{
- return ((reply->error() != QNetworkReply::AuthenticationRequiredError)
- // returned if user or password is incorrect
- && (reply->error() != QNetworkReply::OperationCanceledError
- || !reply->property(authenticationFailedC).toBool()));
+ return (reply->error() != QNetworkReply::AuthenticationRequiredError);
}
void HttpCredentials::slotReadJobDone(QKeychain::Job *job)
@@ -383,13 +365,18 @@ void HttpCredentials::slotWriteJobDone(QKeychain::Job *job)
void HttpCredentials::slotAuthentication(QNetworkReply* reply, QAuthenticator* authenticator)
{
- Q_UNUSED(authenticator)
- // we cannot use QAuthenticator, because it sends username and passwords with latin1
- // instead of utf8 encoding. Instead, we send it manually. Thus, if we reach this signal,
- // those credentials were invalid and we terminate.
- qDebug() << "Stop request: Authentication failed for " << reply->url().toString();
+ if (reply->property(authenticationFailedC).toBool()) {
+ qDebug() << "Authentication failed for " << reply->url().toString();
+ return;
+ }
+
+ // QNAM sends the user and password in latin-1, but the server expects UTF-8.
+ // So send mojibake on purpose
+ authenticator->setUser(QString::fromLatin1(user().toUtf8()));
+ authenticator->setPassword(QString::fromLatin1(password().toUtf8()));
+
+ // Set a property so we don't send the same password twice
reply->setProperty(authenticationFailedC, true);
- reply->close();
}
QString HttpCredentialsGui::queryPassword(bool *ok)
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/pkg-owncloud/owncloud-client.git
More information about the Pkg-owncloud-commits
mailing list