javascript - How do I code a node.js proxy to use NTLMv2 authentication -


i've tried search through stackoverflow similar question people asking client-side of ntlmv2 protocol. i'm implementing proxy performing server-side of protocol authenticate users connecting proxy. i've coded lot of protocol i'm stuck because documentation should take me further difficult understand.

this best documentation i've found far: http://www.innovation.ch/personal/ronald/ntlm.html, how deal lm , nt responses oblivious me.

the proxy located on application server. domain server different machine.

example code node proxy:

var http = require('http')     , request = require('request')     , proxyauth = require('./proxyauth');  function handlerproxy(req, res) {     proxyauth.authorize(req, res);     var options = {         url: req.url,         method: req.method,         headers: req.headers     }     req.pipe(request(options)).pipe(res) }  var server = http.createserver(handlerproxy);   server.listen(3000, function(){     console.log('express server listening on port ' + 3000); });

proxyauth.js code:

proxyauth = {     parsetype3msg: function(buf) {         var lmlen = buf.readuint16le(12);         var lmoff = buf.readuint16le(16);         var ntlen = buf.readuint16le(20);         var ntoff = buf.readuint16le(24);         var dlen = buf.readuint16le(28);         var doff = buf.readuint16le(32);         var ulen = buf.readuint16le(36);         var uoff = buf.readuint16le(40);         var hlen = buf.readuint16le(44);         var hoff = buf.readuint16le(48);         var domain = buf.slice(doff, doff+dlen).tostring('utf8');         var user = buf.slice(uoff, uoff+ulen).tostring('utf8');         var host = buf.slice(hoff, hoff+hlen).tostring('utf8');         var lmresp = buf.slice(lmoff, lmoff+lmlen).tostring('utf8');         var ntresp = buf.slice(ntoff, ntoff+ntlen).tostring('utf8');         console.log(user, lmresp, ntresp);         /* do? */     },     authorize: function(req, res) {         var auth = req.headers['authorization'];         if (!auth) {             res.writehead(401, {                 'www-authenticate': 'ntlm',             });             res.end('<html><body>proxy authentication required</body></html>');         }         else if(auth) {             var header = auth.split(' ');             var buf = new buffer(header[1], 'base64');             var msg = buf.tostring('utf8');             console.log("decoded", msg);             if (header[0] == "ntlm") {                 if (msg.substring(0,8) != "ntlmssp\x00") {                     res.writehead(401, {                         'www-authenticate': 'ntlm',                     });                     res.end('<html><body>header not recognized</body></html>');                 }                 // type 1 message                 if (msg[8] == "\x01") {                     console.log(buf.tostring('hex'));                     var challenge = require('crypto').randombytes(8);                     var type2msg = "ntlmssp\x00"+                         "\x02\x00\x00\x00"+ // 8 message type                         "\x00\x00\x00\x00"+ // 12 target name len/alloc                         "\x00\x00\x00\x00"+ // 16 target name offset                         "\x01\x82\x00\x00"+ // 20 flags                         challenge.tostring('utf8')+ // 24 challenge                         "\x00\x00\x00\x00\x00\x00\x00\x00"+ // 32 context                         "\x00\x00\x00\x00\x00\x00\x00\x00"; // 40 target info len/alloc/offset                      type2msg = new buffer(type2msg).tostring('base64');                      res.writehead(401, {                         'www-authenticate': 'ntlm '+type2msg.trim(),                     });                     res.end();                 }                 else if (msg[8] == "\x03") {                     console.log(buf.tostring('hex'));                     proxyauth.parsetype3msg(buf);                     /* do? */                 }             }             else if (header[0] == "basic") {             }         }     } };  module.exports = proxyauth;

the /* do? */ comment specifies stuck.

i hope put enough information there, let me know if else needed.


Comments

Post a Comment

Popular posts from this blog

user interface - How to replace the Python logo in a Tkinter-based Python GUI app? -

is there way change default logo, python logo , appears in window's task bar? notice have replaced default tk logo used appear in application window. i using windows 7 , python 2.6 , developing gui of tkinter. you can using winico tk extension package. winico package can used add system tray icons tk programs. the following sample shows 1 way change runtime application icon. note need provide .ico file suitable sizes of icons in on command line , need use pythonw. not change taskbar icon console when running python script. test extracted winico0.6 package python\tcl\winico0.6 folder package require winico work , ran code below using pythonw winico_test.py path\to\some\ico\file.ico . import sys tkinter import * def main(argv): root = tk() root.update() root.tk.call('package','require','winico') id = root.tk.call('winico','createfrom',argv[1]) root.tk.call('winico','setwindow',root,id...
Read more

objective c - Greedy NSProgressIndicator Allocation -

i'm using bunch of nsprogressindicators @ once (32 exact) , looks when they're animating start allocating memory no one's business greedy_run http://i62.tinypic.com/15rgmso.png i've got reports app slowdown , crash after days of uptime, , looks culprit, it's hard pinpoint bugs take days appear. i comment out call start animating, memory behaves expected. result of multiple nsprogressindicators alloc'ed on same thread? or maybe sandboxing? of constant allocations coming core animation threads, don't know else going on. custom nsview progress indicator lives in @interface myview () @property (nonatomic, strong) nsimageview *imageview; @property (nonatomic, strong) nstextview *numbertxt; @property (nonatomic, strong) nsprogressindicator *progress; @end @implementation myview - (id)initwithframe:(nsrect)framerect { self = [super initwithframe:framerect]; if (self) { // image nsimage *image = [nsimage imagenamed:@"bg.png"]; c...
Read more

how to set an OCR language in Google Drive -

i need upload image google drive including ocr feature. the problem setocrlanguage method. need specify hebrew language , based on iso 639-1 codes should "heb". i'm getting response "code" : 400, "errors" : [ { "domain" : "global", "location" : "ocrlanguage", "locationtype" : "parameter", "message" : "invalid value", "reason" : "invalid" } ], any idea should code or can list of avaliable codes?
Read more