(C#) HTTP Authentication (Basic, NTLM, Digest, Negotiate/Kerberos)

Demonstrates how to use HTTP authentication. Authentication can be added to any method that sends an HTTP request to the server, such as SynchronousRequest, QuickGetStr, PostXml, etc. To add authentication, simply set the Login and Password properties.

By default, Chilkat will use basic HTTP authentication, which sends the login/password clear-text over the connection. This is bad if SSL/TLS (i.e. HTTPS) is not used. However, if the connection is secure, there should be nothing wrong with using basic authentication.

Chilkat supports more secure authentication types as well, including Digest, NTLM, and Negotiate (which dynamically chooses between NTLM and Kerberos). To use Digest authentication, simply set the DigestAuth property = true. To use NTLM authentication, set the NtlmAuth property = true. Likewise, to use Negotiate authentication, set the NegotiateAuth property = true.

Important: Negotiate authentication is only supported for the Chilkat implementations that run on the Windows platform. This is because it is implemented internally using Microsoft's SSPI API. NTLM authentication however, is available for all supported operating systems because Chilkat implements NTLM directlly (i.e. does not use Microsoft SSPI for the underlying implementation.)

Download: Chilkat .NET Assemblies

Chilkat.Http http = new Chilkat.Http();

bool success;

//  Any string unlocks the component for the 1st 30-days.
success = http.UnlockComponent("Anything for 30-day trial");
if (success != true) {
    textBox1.Text += http.LastErrorText + "\r\n";
    return;
}

//  Set the Login and Password properties for authentication.
http.Login = "chilkat";
http.Password = "myPassword";

string html;
html = http.QuickGetStr("http://localhost/xyz.html");
//  Note:
if (html == null ) {
    textBox1.Text += http.LastErrorText + "\r\n";
    return;
}

//  Examine the HTTP status code returned.
//  A status code of 401 is typically returned for "access denied"
//  if no login/password is provided, or if the credentials (login/password)
//  are incorrect.
textBox1.Text += "HTTP status code for Basic authentication: "
     + http.LastStatus + "\r\n";

//  Examine the HTML returned for the URL:
textBox1.Text += html + "\r\n";

Chilkat.Http http2 = new Chilkat.Http();

//  To use NTLM authentication, set the
//  NtlmAuth property = true
http2.NtlmAuth = true;

//  The session log can be captured to a file by
//  setting the SessionLogFilename property:
http2.SessionLogFilename = "ntlmAuthLog.txt";

//  Examination of the HTTP session log will show the NTLM
//  back-and-forth exchange between the client and server.

//  This call will now use NTLM authentication (assuming it
//  is supported by the web server).
html = http2.QuickGetStr("http://localhost/xyz.html");
//  Note:
if (html == null ) {
    textBox1.Text += http2.LastErrorText + "\r\n";
    return;
}

textBox1.Text += "HTTP status code for NTLM authentication: "
     + http2.LastStatus + "\r\n";

Chilkat.Http http3 = new Chilkat.Http();

//  To use Digest Authentication, set the DigestAuth property = true
//  Also, no more than one of the authentication type properties
//  (NtlmAuth, DigestAuth, and NegotiateAuth)  should be set
//  to true.
http3.DigestAuth = true;

http3.SessionLogFilename = "digestAuthLog.txt";

//  This call will now use Digest authentication (assuming it
//  is supported by the web server).
html = http3.QuickGetStr("http://localhost/xyz.html");
//  Note:
if (html == null ) {
    textBox1.Text += http3.LastErrorText + "\r\n";
    return;
}

textBox1.Text += "HTTP status code for Digest authentication: "
     + http3.LastStatus + "\r\n";