Servers may provide multiple WWW-Authenticate headers, each offering a different authentication scheme. We currently fail the request as soon as we encounter an unrecognised scheme, which prevents subsequent offers from succeeding. Fix by silently ignoring headers for schemes that we do not recognise. If no schemes are recognised then the request will eventually fail anyway due to the 401 response code. If multiple schemes are supported, arbitrarily choose the scheme appearing first within the response headers. Signed-off-by: Michael Brown <mcb30@ipxe.org>tags/v1.20.1
|
|
||
104 |
|
104 |
|
105 |
|
105 |
|
106 |
|
106 |
|
|
107 |
|
|
107 |
|
108 |
|
108 |
|
109 |
|
109 |
|
110 |
|
|
|
||
118 |
|
119 |
|
119 |
|
120 |
|
120 |
|
121 |
|
121 |
|
|
|
122 |
|
|
|
|
122 |
|
|
|
123 |
|
|
123 |
|
124 |
|
124 |
|
125 |
|
125 |
|
|
|
|
126 |
|
|
|
127 |
|
|
126 |
|
128 |
|
127 |
|
129 |
|
|
130 |
|
|
|
131 |
|
|
|
132 |
|
|
|
133 |
|
|
|
134 |
|
|
128 |
|
135 |
|
129 |
|
136 |
|
130 |
|
137 |
|