Add SPNEGO Proxy Auth test

Idealy we could use Python 'requests' but I don't seem to find how to make it work.

Also it would have been better to do server-auth using SPNEGO but curl loops re-using
the same authz blob which gets rejected by MAG (Request is a replay).

This seem resolved in recent versions but for now let the test do SPNEGO for Proxy auth only.

Author: iboukris

tests/httpd.conf

@@ -121,6 +121,8 @@ CoreDumpDirectory /tmp
 
 
 <Location /spnego>
+  Options +Includes
+  AddOutputFilter INCLUDES .html
   AuthType GSSAPI
   AuthName "Login"
   GssapiSSLonly Off
@@ -130,7 +132,7 @@ CoreDumpDirectory /tmp
   GssapiCredStore ccache:${HTTPROOT}/tmp/httpd_krb5_ccache
   GssapiCredStore client_keytab:${HTTPROOT}/http.keytab
   GssapiCredStore keytab:${HTTPROOT}/http.keytab
-  GssapiBasicAuth Off
+  GssapiBasicAuth On
   GssapiAllowedMech krb5
   Require valid-user
 </Location>

tests/magtests.py

@@ -11,6 +11,7 @@
 import subprocess
 import sys
 import time
+import shlex
 
 
 def parse_args():
@@ -273,6 +274,20 @@ def test_spnego_auth(testdir, testenv, testlog):
         else:
             sys.stderr.write('SPNEGO: SUCCESS\n')
 
+    curl = "curl -vf http://%s:%s@%s/spnego/ -x http://%s:%s -U: --proxy-negotiate" % (
+               USR_NAME, USR_PWD, WRAP_HOSTNAME, WRAP_HOSTNAME, WRAP_PROXY_PORT)
+    curl = shlex.split(curl)
+
+    with (open(testlog, 'a')) as logfile:
+        spnego = subprocess.Popen(curl,
+                                  stdout=logfile, stderr=logfile,
+                                  env=testenv, preexec_fn=os.setsid)
+        spnego.wait()
+        if spnego.returncode != 0:
+            sys.stderr.write('SPNEGO Proxy Auth: FAILED\n')
+        else:
+            sys.stderr.write('SPNEGO Proxy Auth: SUCCESS\n')
+
 
 def test_basic_auth_krb5(testdir, testenv, testlog):