ntlmssp

package module

v0.0.0-...-81839fd Latest Latest Go to latest Published: Aug 14, 2023 License: MIT Imports: 16 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/ehsannm/go-ntlmssp

Links

Open Source Insights

README ¶

go-ntlmssp

Golang package that provides NTLM/Negotiate authentication over HTTP

Protocol details from https://msdn.microsoft.com/en-us/library/cc236621.aspx Implementation hints from http://davenport.sourceforge.net/ntlm.html

This package only implements authentication, no key exchange or encryption. It only supports Unicode (UTF16LE) encoding of protocol strings, no OEM encoding. This package implements NTLMv2.

Usage

url, user, password := "http://www.example.com/secrets", "robpike", "pw123"
client := &http.Client{
  Transport: ntlmssp.Negotiator{
    RoundTripper:&http.Transport{},
  },
}

req, _ := http.NewRequest("GET", url, nil)
req.SetBasicAuth(user, password)
res, _ := client.Do(req)

This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact opencode@microsoft.com with any additional questions or comments.

Documentation ¶

Overview ¶

Package ntlmssp provides NTLM/Negotiate authentication over HTTP

Protocol details from https://msdn.microsoft.com/en-us/library/cc236621.aspx, implementation hints from http://davenport.sourceforge.net/ntlm.html . This package only implements authentication, no key exchange or encryption. It only supports Unicode (UTF16LE) encoding of protocol strings, no OEM encoding. This package implements NTLMv2.

Index ¶

Constants
func GetDomain(user string) (string, string, bool)
func NewNegotiateMessage(domainName, workstationName string) ([]byte, error)
func ProcessChallengeWithHash(challengeMessageData []byte, user, hash string) ([]byte, error)
type Negotiator
- func (l Negotiator) RoundTrip(req *http.Request) (res *http.Response, err error)
type Version
- func DefaultVersion() Version

Constants ¶

View Source

const (
	FlagNTLMSSPNEGOTIATEUNICODE                 negotiateFlags = 1 << 0
	FlagNTLMNEGOTIATEOEM                                       = 1 << 1
	FlagNTLMSSPREQUESTTARGET                                   = 1 << 2
	FlagNTLMSSPNEGOTIATESIGN                                   = 1 << 4
	FlagNTLMSSPNEGOTIATESEAL                                   = 1 << 5
	FlagNTLMSSPNEGOTIATEDATAGRAM                               = 1 << 6
	FlagNTLMSSPNEGOTIATELMKEY                                  = 1 << 7
	FlagNTLMSSPNEGOTIATENTLM                                   = 1 << 9
	FlagANONYMOUS                                              = 1 << 11
	FlagNTLMSSPNEGOTIATEOEMDOMAINSUPPLIED                      = 1 << 12
	FlagNTLMSSPNEGOTIATEOEMWORKSTATIONSUPPLIED                 = 1 << 13
	FlagNTLMSSPNEGOTIATEALWAYSSIGN                             = 1 << 15
	FlagNTLMSSPTARGETTYPEDOMAIN                                = 1 << 16
	FlagNTLMSSPTARGETTYPESERVER                                = 1 << 17
	FlagNTLMSSPNEGOTIATEEXTENDEDSESSIONSECURITY                = 1 << 19
	FlagNTLMSSPNEGOTIATEIDENTIFY                               = 1 << 20
	FlagNTLMSSPREQUESTNONNTSESSIONKEY                          = 1 << 22
	FlagNTLMSSPNEGOTIATETARGETINFO                             = 1 << 23
	FlagNTLMSSPNEGOTIATEVERSION                                = 1 << 25
	FlagNTLMSSPNEGOTIATE128                                    = 1 << 29
	FlagNTLMSSPNEGOTIATEKEYEXCH                                = 1 << 30
	FlagNTLMSSPNEGOTIATE56                                     = 1 << 31
)

Variables ¶

This section is empty.

Functions ¶

func GetDomain ¶

func GetDomain(user string) (string, string, bool)

GetDomain : parse domain name from based on slashes in the input Need to check for upn as well

func NewNegotiateMessage ¶

func NewNegotiateMessage(domainName, workstationName string) ([]byte, error)

NewNegotiateMessage creates a new NEGOTIATE message with the flags that this package supports.

func ProcessChallengeWithHash ¶

func ProcessChallengeWithHash(challengeMessageData []byte, user, hash string) ([]byte, error)

Types ¶

type Negotiator ¶

type Negotiator struct {
	http.RoundTripper
}

Negotiator is a http.RoundTripper decorator that automatically converts basic authentication to NTLM/Negotiate authentication when appropriate.

func (Negotiator) RoundTrip ¶

func (l Negotiator) RoundTrip(req *http.Request) (res *http.Response, err error)

RoundTrip sends the request to the server, handling any authentication re-sends as needed.

type Version ¶

type Version struct {
	ProductMajorVersion uint8
	ProductMinorVersion uint8
	ProductBuild        uint16

	NTLMRevisionCurrent uint8
	// contains filtered or unexported fields
}

Version is a struct representing https://msdn.microsoft.com/en-us/library/cc236654.aspx

func DefaultVersion ¶

func DefaultVersion() Version

DefaultVersion returns a Version with "sensible" defaults (Windows 7)

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL