View Javadoc
1   /*
2    * ====================================================================
3    * Licensed to the Apache Software Foundation (ASF) under one
4    * or more contributor license agreements.  See the NOTICE file
5    * distributed with this work for additional information
6    * regarding copyright ownership.  The ASF licenses this file
7    * to you under the Apache License, Version 2.0 (the
8    * "License"); you may not use this file except in compliance
9    * with the License.  You may obtain a copy of the License at
10   *
11   *   http://www.apache.org/licenses/LICENSE-2.0
12   *
13   * Unless required by applicable law or agreed to in writing,
14   * software distributed under the License is distributed on an
15   * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
16   * KIND, either express or implied.  See the License for the
17   * specific language governing permissions and limitations
18   * under the License.
19   * ====================================================================
20   *
21   * This software consists of voluntary contributions made by many
22   * individuals on behalf of the Apache Software Foundation.  For more
23   * information on the Apache Software Foundation, please see
24   * <http://www.apache.org/>.
25   *
26   */
27  package org.apache.hc.client5.http.examples;
28  
29  import org.apache.hc.client5.http.auth.UsernamePasswordCredentials;
30  import org.apache.hc.client5.http.classic.methods.HttpGet;
31  import org.apache.hc.client5.http.impl.auth.BasicScheme;
32  import org.apache.hc.client5.http.impl.classic.CloseableHttpClient;
33  import org.apache.hc.client5.http.impl.classic.CloseableHttpResponse;
34  import org.apache.hc.client5.http.impl.classic.HttpClients;
35  import org.apache.hc.client5.http.protocol.HttpClientContext;
36  import org.apache.hc.core5.http.HttpHost;
37  import org.apache.hc.core5.http.io.entity.EntityUtils;
38  
39  /**
40   * An example of how HttpClient can be customized to authenticate
41   * preemptively using Basic scheme.
42   * <b/>
43   * Generally, preemptive authentication can be considered less
44   * secure than a response to an authentication challenge
45   * and therefore discouraged.
46   */
47  public class ClientPreemptiveBasicAuthentication {
48  
49      public static void main(final String[] args) throws Exception {
50          try (final CloseableHttpClient httpclient = HttpClients.createDefault()) {
51  
52              // Generate Basic scheme object and add it to the local auth cache
53              final BasicScheme basicAuth = new BasicScheme();
54              basicAuth.initPreemptive(new UsernamePasswordCredentials("user", "passwd".toCharArray()));
55  
56              final HttpHost target = new HttpHost("http", "httpbin.org", 80);
57  
58              // Add AuthCache to the execution context
59              final HttpClientContext localContext = HttpClientContext.create();
60              localContext.resetAuthExchange(target, basicAuth);
61  
62              final HttpGet httpget = new HttpGet("http://httpbin.org/hidden-basic-auth/user/passwd");
63  
64              System.out.println("Executing request " + httpget.getMethod() + " " + httpget.getUri());
65              for (int i = 0; i < 3; i++) {
66                  try (final CloseableHttpResponse response = httpclient.execute(httpget, localContext)) {
67                      System.out.println("----------------------------------------");
68                      System.out.println(response.getCode() + " " + response.getReasonPhrase());
69                      System.out.println(EntityUtils.toString(response.getEntity()));
70                  }
71              }
72          }
73      }
74  
75  }