On Thu, 4 Nov 2004, Jamie Lokier wrote:

> Could you do the following?:
>
> 1. Save the GET'd form locally, as a file.
>
> 2. Add a BASE element to the document, containing the original URL
> of the form. This is added in the <head> section:
>
> <base
> href="http://myhost:myport/curltest-auth/uploadform.htm" />
>
> (If there's a BASE element already, no need to add one).
>
> 3. Close IE or something like that, to ensure the POST will
> definitely open a new connection to the server.
>
> 4. Visit the file using IE. Post to the form. Trace what happens.

Here goes. With the file locally, there's no http traffic to load it in
my browser. When I do the POST, I get the following. I hope this
lights the way a bit further.

-DB

POST /curltest-auth/upload.asp HTTP/1.1
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg,
application/vnd.ms-excel, application/vnd.ms-powerpoint,
application/msword, application/x-shockwave-flash, */*
Accept-Language: en-us
Content-Type: multipart/form-data;
boundary=---------------------------7d4842f20ffc
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR
1.0.3705)
Host: myhost:myport
Content-Length: 476
Connection: Keep-Alive
Cache-Control: no-cache

HTTP/1.1 401 Access Denied
Server: Microsoft-IIS/5.0
Date: Fri, 05 Nov 2004 00:49:01 GMT
WWW-Authenticate: Negotiate
WWW-Authenticate: NTLM
WWW-Authenticate: Basic realm="myhost"
Connection: close
Content-Length: 4431
Content-Type: text/html

POST /curltest-auth/upload.asp HTTP/1.1
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg,
application/vnd.ms-excel, application/vnd.ms-powerpoint,
application/msword, application/x-shockwave-flash, */*
Accept-Language: en-us
Content-Type: multipart/form-data;
boundary=---------------------------7d4842f20ffc
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR
1.0.3705)
Host: myhost:myport
Authorization: Negotiate TlRMTVNTUAABAAAAB4IIoAAAAAAAAAAAAAAAAAAAAAA=
Connection: Keep-Alive
Cache-Control: no-cache
Content-Length: 0

HTTP/1.1 401 Access Denied
Server: Microsoft-IIS/5.0
Date: Fri, 05 Nov 2004 00:49:10 GMT
WWW-Authenticate: Negotiate
TlRMTVNTUAACAAAAEAAQADgAAAAFgomiSSZ8JpBoqzYAAAAAAAAAALoAugBIAAAABQCTCAAA
AA9FAFgAVABFAFIATgBBAEwAAgAQAEUAWABUAEUAUgBOAEEATAABABwARQBEAC0ARQBDAEMA
SQBJAFMAMAAxAEQARQBWAAQALgBlAHgAdABlAHIAbgBhAGwALgBlAHYAZQByAGQAcgBlAGEA
bQAuAGMAbwByAHAAAwBMAGUAZAAtAGUAYwBjAGkAaQBzADAAMQBkAGUAdgAuAGUAeAB0AGUA
cgBuAGEAbAAuAGUAdgBlAHIAZAByAGUAYQBtAC4AYwBvAHIAcAAAAAAA
Content-Length: 4033
Content-Type: text/htm

POST /curltest-auth/upload.asp HTTP/1.1
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg,
application/vnd.ms-excel, application/vnd.ms-powerpoint,
application/msword, application/x-shockwave-flash, */*
Accept-Language: en-us
Content-Type: multipart/form-data;
boundary=---------------------------7d4842f20ffc
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR
1.0.3705)
Host: myhost:myport
Authorization: Negotiate
TlRMTVNTUAADAAAAGAAYAGoAAAAYABgAggAAABIAEgBAAAAADAAMAFIAAAAMAAwAXgAAAAAA
AACaAAAABYKIoGUAdgBlAHIAZAByAGUAYQBtAGQAYgB5AHIAbwBuAEQAQgBZAFIATwBOAKUV
2jjz/X98AAAAAAAAAAAAAAAAAAAAAD+26I+Wrr7UdTUFyluyw+NVGPcBYMSTtA==
Connection: Keep-Alive
Cache-Control: no-cache
Content-Length: 476

HTTP/1.1 100 Continue
Server: Microsoft-IIS/5.0
Date: Fri, 05 Nov 2004 00:49:10 GMT
X-Powered-By: ASP.NET

HTTP/1.1 200 OK
Server: Microsoft-IIS/5.0
Date: Fri, 05 Nov 2004 00:49:10 GMT
X-Powered-By: ASP.NET
Content-Length: 21
Content-Type: text/html
Set-Cookie: ASPSESSIONIDAQQSRSCC=JFLGDBNCKHELDODIJIHKANAO; path=/
Cache-control: private
Received on 2004-11-05