The Wiert Corner – irregular stream of stuff

Jeroen W. Pluimers on .NET, C#, Delphi, databases, and personal interests

  • My badges

    Mastodon

  • Twitter Updates

  • My Flickr Stream

    20140508-Delphi-2007--Project-Options--Cannot-Edit-Application-Title-HelpFile-Icon-Theming20140430-Fiddler-Filter-Actions-Button-Run-Filterset-now20140424-VMware-Fusion-6.0.3.-no-reclaimable
    More Photos

  • Pages

  • All categories

  • Enter your email address to subscribe to this blog and receive notifications of new posts by email.

    Join 4,224 other subscribers
«
»

NTLM and Kerberos Authentication for a WebRequest and a WebProxy

Posted by jpluimers on 2016/02/16

This was very useful to get a WebClient with a WebProxy configured to use a proxy server that is based on NTLM authentication.

The note in the MSDN NTLM and Kerberos Authentication. documentation however was totally wrong.

String MyURI = "http://www.contoso.com/";
WebRequest WReq = WebRequest.Create MyURI;
WReq.Credentials = CredentialCache.DefaultCredentials;

Note NTLM authentication does not work through a proxy server.

This code works perfectly fine as the CredentialsCache.DefaultCredentials contains your NTLM or Kerberos credentials.
It even works when you have a local Fiddler http proxy as a facade in front of your NTLM proxy.

        [TestMethod, TestCategory("Lengthy")]
        public void TestNtlmWebProxy()
        {
            WebClient webClient = new WebClient();
            WebProxy webProxy = new WebProxy("10.110.128.15", 8080);
            webProxy.Credentials = CredentialCache.DefaultCredentials;
            webClient.Proxy = webProxy;
            AssertWebClientGetsValidExternalIpAddress(webClient);
        }

        [TestMethod, TestCategory("Lengthy")]
        public void TestLocalFiddlerNtlmWebProxy()
        {
            WebClient webClient = new WebClient();
            WebProxy webProxy = new WebProxy("127.0.0.1", 8888);
            webProxy.Credentials = CredentialCache.DefaultCredentials;
            webClient.Proxy = webProxy;
            AssertWebClientGetsValidExternalIpAddress(webClient);
        }

        private static void AssertWebClientGetsValidExternalIpAddress(WebClient webClient)
        {
            try
            {
                string url;
                //url = "http://ifconfig.me/ip";
                //url = "http://shtuff.it/myip/short";
                //url = "http://curlmyip.com";
                //url = "http://ident.me";
                //url = "http://tnx.nl/ip";
                //url = "http://ipecho.net/plain";
                //url = "http://ip.appspot.com";
                //url = "http://icanhazip.com";
                url = "http://whatismyip.akamai.com/";
                string content = webClient.DownloadString(url);
                var endsWithLineFeed = content.EndsWith("\n", StringComparison.InvariantCulture);
                if (endsWithLineFeed)
                    content = content.Trim();
                IPAddress ipAddress;
                var isValidIpAddress = IPAddress.TryParse(content, out ipAddress);
                Assert.IsTrue(isValidIpAddress, "invalid IP address");
            }
            catch (WebException e)
            {
                if (e.Status == WebExceptionStatus.ProtocolError)
                {
                    WebResponse resp = e.Response;
                    using (StreamReader sr = new StreamReader(resp.GetResponseStream()))
                    {
                        string response = sr.ReadToEnd();
                        Assert.Fail(string.Format("Response: {1}{0}{1}Exception: {1}{2}{1}", response, e.ToString(), Environment.NewLine));
                    }
                }
                else
                    throw;
            }
        }

Based on the above, I also found the link below that shows how to with the case where you (don’t) need a proxy, and how to check if credentials are actually required:

Working With Proxy Servers – C# Tutorials | Dream.In.Code.

–jeroen

via NTLM and Kerberos Authentication.

This entry was posted on 2016/02/16 at 06:00 and is filed under .NET, .NET 2.0, .NET 3.0, .NET 3.5, .NET 4.0, .NET 4.5, C#, C# 2.0, C# 3.0, C# 4.0, C# 5.0, C# 6 (Roslyn), Development, Fiddler, Software Development, Web Development. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

«
»
 
%d bloggers like this: