Implements the NTLM Authentication Scheme for HTTP.

TIdNTLMAuthentication = class(TIdAuthentication)

TIdNTLMAuthentication is a TIdAuthentication that implements the NTLM Authentication Scheme for HTTP. The NTLM Authentication Scheme is not as secure as Digest and some other schemes, but it is slightly better than the Basic authentication scheme. The NTLM Challenge/Response scheme is described at:

• Microsoft NTLM, MSDN Platform SDK (http://msdn.microsoft.com/library/default.asp?url=/library/en-us/security/hh/secpack/ntlmssp_0k19.asp)

Note: NTLM Authentication is not an http authentication scheme; it is a connection authentication scheme which happens to (mis-)use http status codes and headers (and even those incorrectly).

Constructs the authorization credentials for the authentication scheme.

function Authentication: String; override;

String - Contents of the binary authentication message.

Authentication is an overridden String function that constructs the authorization credentials using the binary message types required by the authentication scheme.

Constructor for the object instance.

constructor Create; override;

Create is the constructor for the object instance, and calls the inherited Create method.

Create also initializes the OpenSSL library used for constructing binary message packets used by the protocol by calling IdSSLOpenSSLHeaders.Load. If the OpenSSL library cannot be loaded, the constructor aborts creation of the object instance.

Indicates if the connection should open for Challenge/Response negotiations.

function KeepAlive: Boolean; override;

KeepAlive is an overridden Boolean function that indicates if the connection used for Challenge/Response negotiation should remain open during the steps for the process. NTLM is a mutli-step connection-based authentication method, so the connection cannot close during usage.

Indicates the authentication process should revert to the initial step in the process.

procedure Reset; override;

Reset is an overridden procedure in TIdNTLMAuthentication that calls the inherited method prior to setting the value in Status to 1. Reset inicates the authentication process should revert to the initial step in the Challenge/Response ptotocol.