server/hotp/bad_session

   1 Selected authentication method: no certificate, username and password
   2 Selected authentication method: HMAC-based one-time password
   3 Logging user 6nxu9j into server https://www.czebox.cz/
   4 SOAP request to sent to https://www.czebox.cz/as/processLogin?type=hotp&uri=https://www.czebox.cz/apps/DS/dz:
   5 <?xml version="1.0" encoding="UTF-8"?>
   6 <Envelope xmlns="http://schemas.xmlsoap.org/soap/envelope/"><Body><DummyOperation xmlns="http://isds.czechpoint.cz/v20"/></Body></Envelope>
   7
   8 End of SOAP request
   9 Cookies will be stored and send because context has been authorized by OTP.
  10 Sending POST request to <https://www.czebox.cz/as/processLogin?type=hotp&uri=https://www.czebox.cz/apps/DS/dz>
  11 POST body length: 179, content follows:
  12 <?xml version="1.0" encoding="UTF-8"?>
  13 <Envelope xmlns="http://schemas.xmlsoap.org/soap/envelope/"><Body><DummyOperation xmlns="http://isds.czechpoint.cz/v20"/></Body></Envelope>
  14
  15 End of POST body
  16 About to connect() to www.czebox.cz port 443 (#0)
  17   Trying 90.182.204.24... connected
  18 successfully set certificate verify locations:
  19   CAfile: none
  20   CApath: /etc/ssl/certs
  21 SSLv3, TLS handshake, Client hello (1):
  22 SSLv3, TLS handshake, Server hello (2):
  23 SSLv3, TLS handshake, CERT (11):
  24 SSLv3, TLS handshake, Server key exchange (12):
  25 SSLv3, TLS handshake, Server finished (14):
  26 SSLv3, TLS handshake, Client key exchange (16):
  27 SSLv3, TLS change cipher, Client hello (1):
  28 SSLv3, TLS handshake, Finished (20):
  29 SSLv3, TLS change cipher, Client hello (1):
  30 SSLv3, TLS handshake, Finished (20):
  31 SSL connection using DHE-RSA-AES256-SHA
  32 Server certificate:
  33          subject: C=CZ; O=Ministerstvo vnitra \U010CR-odbor ekonomicko-organiza\U010Dn� pro ICT [I\U010C 00007064]; OU=odbor rozvoje projekt\U016F a slu\U017Eeb eGovernment; CN=*.czebox.cz; serialNumber=S91490
  34          start date: 2011-02-25 12:16:59 GMT
  35          expire date: 2012-02-25 11:26:00 GMT
  36          common name: *.czebox.cz (matched)
  37          issuer: C=CZ; O=\U010Cesk� po\U0161ta, s.p. [I\U010C 47114983]; CN=PostSignum Public CA 2
  38          SSL certificate verify ok.
  39 Server auth using Basic with user '6nxu9j'
  40 POST /as/processLogin?type=hotp&uri=https://www.czebox.cz/apps/DS/dz HTTP/1.1
  41 Authorization: Basic Nm54dTlqOmZvb2Jhcg==
  42 User-Agent: libisds/0.5
  43 Host: www.czebox.cz
  44 Accept: application/soap+xml,application/xml,text/xml
  45 Content-Type: text/xml
  46 Content-Length: 179
  47
  48 <?xml version="1.0" encoding="UTF-8"?>
  49 <Envelope xmlns="http://schemas.xmlsoap.org/soap/envelope/"><Body><DummyOperation xmlns="http://isds.czechpoint.cz/v20"/></Body></Envelope>
  50 upload completely sent off: 179 out of 179 bytes
  51 HTTP/1.1 401 Unauthorized
  52 Date: Thu, 05 Jan 2012 21:58:51 GMT
  53 Server: Apache-Coyote/1.1
  54 WWW-Authenticate: hotp
  55 X-Response-message-text: =?UTF-8?B?Q2h5YmEgcMWZaWhsw6HFoWVuw60sIHpub3Z1IHphZGVqdGUgw7pkYWplLg==?=
  56 X-Response-message-code: authentication.error.userIsNotAuthenticated
  57 Content-Type: text/html;charset=utf-8
  58 Content-Language: cs-CZ
  59 X-Frame-Options: Deny
  60 Cache-Control: no-store,no-transform,private,max-age=0
  61 Expires: 0
  62 Transfer-Encoding: chunked
  63
  64 Connection #0 to host www.czebox.cz left intact
  65 Final response to https://www.czebox.cz/as/processLogin?type=hotp&uri=https://www.czebox.cz/apps/DS/dz received
  66 Response body length: 24, content follows:
  67
  68
  69
  70 End of response body
  71 OTP authentication headers received: method=hotp, code=authentication.error.userIsNotAuthenticated, message==?UTF-8?B?Q2h5YmEgcMWZaWhsw6HFoWVuw60sIHpub3Z1IHphZGVqdGUgw7pkYWplLg==?=
  72 Server returned 401 HTTP code
  73 Closing connection #0
  74 SSLv3, TLS alert, Client hello (1):
  75 Connection to server https://www.czebox.cz/apps/ closed
  76 isds_login() failed: Not logged in: Authentication failed