Auth challenge parsing code improvement

ok2c · ok2c · commit 3d9285ae72b2 · 2026-04-12T14:55:20.000+02:00
diff --git a/httpclient5/src/main/java/org/apache/hc/client5/http/impl/auth/AuthChallengeParser.java b/httpclient5/src/main/java/org/apache/hc/client5/http/impl/auth/AuthChallengeParser.java
@@ -34,6 +34,7 @@
 import org.apache.hc.client5.http.auth.ChallengeType;
 import org.apache.hc.core5.http.NameValuePair;
 import org.apache.hc.core5.http.ParseException;
+import org.apache.hc.core5.http.message.BasicHeaderValueParser;
 import org.apache.hc.core5.http.message.BasicNameValuePair;
 import org.apache.hc.core5.http.message.ParserCursor;
 import org.apache.hc.core5.util.TextUtils;
@@ -107,19 +108,52 @@ public List<AuthChallenge> parse(
         }
         final List<AuthChallenge> challenges = new ArrayList<>(internalChallenges.size());
         for (final ChallengeInt internal : internalChallenges) {
-            final List<NameValuePair> params = internal.params;
-            String token68 = null;
-            if (params.size() == 1) {
-                final NameValuePair param = params.get(0);
-                if (param.getValue() == null) {
-                    token68 = param.getName();
-                    params.clear();
+            challenges.add(parseInt(challengeType, internal));
+        }
+        return challenges;
+    }
+
+    /**
+     * Parses the given sequence of characters into a single {@link AuthChallenge}.
+     *
+     * @param challengeType the type of challenge (target or proxy).
+     * @param schemeName the scheme name
+     * @param buffer the sequence of characters to be parsed.
+     * @param cursor the parser cursor.
+     * @return auth challenge.
+     *
+     * @since 5.7
+     */
+    public AuthChallenge parse(
+            final ChallengeType challengeType,
+            final String schemeName,
+            final CharSequence buffer,
+            final ParserCursor cursor) {
+        final List<NameValuePair> params = new ArrayList<>();
+        while (!cursor.atEnd()) {
+            final NameValuePair param = BasicHeaderValueParser.INSTANCE.parseNameValuePair(buffer, cursor);
+            params.add(param);
+            if (!cursor.atEnd()) {
+                final char ch = buffer.charAt(cursor.getPos());
+                if (ch == ',') {
+                    cursor.updatePos(cursor.getPos() + 1);
                 }
             }
-            challenges.add(
-                    new AuthChallenge(challengeType, internal.schemeName, token68, !params.isEmpty() ? params : null));
         }
-        return challenges;
+        return new AuthChallenge(challengeType, schemeName, null, params);
+    }
+
+    AuthChallenge parseInt(final ChallengeType challengeType, final ChallengeInt internal) {
+        final List<NameValuePair> params = internal.params;
+        String token68 = null;
+        if (params.size() == 1) {
+            final NameValuePair param = params.get(0);
+            if (param.getValue() == null) {
+                token68 = param.getName();
+                params.clear();
+            }
+        }
+        return new AuthChallenge(challengeType, internal.schemeName, token68, !params.isEmpty() ? params : null);
     }
 
     ChallengeInt parseChallenge(
diff --git a/httpclient5/src/main/java/org/apache/hc/client5/http/impl/auth/AuthenticationHandler.java b/httpclient5/src/main/java/org/apache/hc/client5/http/impl/auth/AuthenticationHandler.java
@@ -28,7 +28,6 @@
 package org.apache.hc.client5.http.impl.auth;
 
 import java.util.HashMap;
-import java.util.Iterator;
 import java.util.LinkedList;
 import java.util.List;
 import java.util.Locale;
@@ -47,7 +46,6 @@
 import org.apache.hc.core5.annotation.Contract;
 import org.apache.hc.core5.annotation.Internal;
 import org.apache.hc.core5.annotation.ThreadingBehavior;
-import org.apache.hc.core5.http.FormattedHeader;
 import org.apache.hc.core5.http.Header;
 import org.apache.hc.core5.http.HttpHeaders;
 import org.apache.hc.core5.http.HttpHost;
@@ -56,10 +54,9 @@
 import org.apache.hc.core5.http.HttpStatus;
 import org.apache.hc.core5.http.ParseException;
 import org.apache.hc.core5.http.message.BasicHeader;
-import org.apache.hc.core5.http.message.ParserCursor;
+import org.apache.hc.core5.http.message.MessageSupport;
 import org.apache.hc.core5.http.protocol.HttpContext;
 import org.apache.hc.core5.util.Asserts;
-import org.apache.hc.core5.util.CharArrayBuffer;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
@@ -169,43 +166,27 @@ public Map<String, AuthChallenge> extractChallengeMap(
             final HttpResponse response,
             final HttpClientContext context) {
         final Map<String, AuthChallenge> challengeMap = new HashMap<>();
-        final Iterator<Header> headerIterator = response.headerIterator(
-                challengeType == ChallengeType.PROXY ? HttpHeaders.PROXY_AUTHENTICATE : HttpHeaders.WWW_AUTHENTICATE);
-        while (headerIterator.hasNext()) {
-            final Header header = headerIterator.next();
-            final CharArrayBuffer buffer;
-            final int pos;
-            if (header instanceof FormattedHeader) {
-                buffer = ((FormattedHeader) header).getBuffer();
-                pos = ((FormattedHeader) header).getValuePos();
-            } else {
-                final String s = header.getValue();
-                if (s == null) {
-                    continue;
-                }
-                buffer = new CharArrayBuffer(s.length());
-                buffer.append(s);
-                pos = 0;
-            }
-            final ParserCursor cursor = new ParserCursor(pos, buffer.length());
-            final List<AuthChallenge> authChallenges;
-            try {
-                authChallenges = parser.parse(challengeType, buffer, cursor);
-            } catch (final ParseException ex) {
-                if (LOG.isWarnEnabled()) {
-                    final HttpClientContext clientContext = HttpClientContext.cast(context);
-                    final String exchangeId = clientContext.getExchangeId();
-                    LOG.warn("{} Malformed challenge: {}", exchangeId, header.getValue());
-                }
-                continue;
-            }
-            for (final AuthChallenge authChallenge : authChallenges) {
-                final String schemeName = authChallenge.getSchemeName().toLowerCase(Locale.ROOT);
-                if (!challengeMap.containsKey(schemeName)) {
-                    challengeMap.put(schemeName, authChallenge);
-                }
-            }
-        }
+        MessageSupport.parseHeaders(
+                response,
+                challengeType == ChallengeType.PROXY ? HttpHeaders.PROXY_AUTHENTICATE : HttpHeaders.WWW_AUTHENTICATE,
+                (buffer, cursor) -> {
+                    try {
+                        final List<AuthChallenge> authChallenges = parser.parse(challengeType, buffer, cursor);
+                        for (final AuthChallenge authChallenge : authChallenges) {
+                            final String schemeName = authChallenge.getSchemeName().toLowerCase(Locale.ROOT);
+                            if (!challengeMap.containsKey(schemeName)) {
+                                challengeMap.put(schemeName, authChallenge);
+                            }
+                        }
+                    } catch (final ParseException ex) {
+                        if (LOG.isWarnEnabled()) {
+                            final HttpClientContext clientContext = HttpClientContext.cast(context);
+                            final String exchangeId = clientContext.getExchangeId();
+                            LOG.warn("{} Malformed challenge", exchangeId);
+                        }
+                    }
+
+                });
         return challengeMap;
     }
 
diff --git a/httpclient5/src/test/java/org/apache/hc/client5/http/impl/auth/TestAuthChallengeParser.java b/httpclient5/src/test/java/org/apache/hc/client5/http/impl/auth/TestAuthChallengeParser.java
@@ -345,4 +345,21 @@ private static void assertNameValuePair(final NameValuePair pair, final String n
         Assertions.assertEquals(value, pair.getValue());
     }
 
+    @Test
+    void testParseAuthInfo() throws Exception {
+        final CharArrayBuffer buffer = new CharArrayBuffer(64);
+        buffer.append("  realm = blah, this, that  , name = value ");
+        final ParserCursor cursor = new ParserCursor(0, buffer.length());
+        final AuthChallenge challenge = parser.parse(ChallengeType.TARGET, StandardAuthScheme.BASIC, buffer, cursor);
+        Assertions.assertEquals(StandardAuthScheme.BASIC, challenge.getSchemeName());
+        Assertions.assertNull(challenge.getValue());
+        final List<NameValuePair> params = challenge.getParams();
+        Assertions.assertNotNull(params);
+        Assertions.assertEquals(4, params.size());
+        assertNameValuePair(params.get(0), "realm", "blah");
+        assertNameValuePair(params.get(1), "this", null);
+        assertNameValuePair(params.get(2), "that", null);
+        assertNameValuePair(params.get(3), "name", "value");
+    }
+
 }
