Simplified authentication negotiation

src/calanonsync/ews.go

@@ -66,13 +66,11 @@ type EWSRoundTripper struct {
 }
 
 func (er EWSRoundTripper) RoundTrip(r *http.Request) (*http.Response, error) {
-	if er.authType == authTypeBasic {
-		r.SetBasicAuth(er.username, er.password)
-	}
-
 	er.initMutex.Lock()
-	resp, err := er.delegate.RoundTrip(r)
+	if er.authType == authTypeUnknown {
-	if err == nil && resp.StatusCode == http.StatusUnauthorized && er.authType == authTypeUnknown {
+		// Find authentication scheme.
+		resp, err := http.DefaultClient.Get(r.URL.String())
+		if err == nil && resp.StatusCode == http.StatusUnauthorized {
 			// This is a good time to find out what the server prefers.
 			authHeaders := resp.Header["Www-Authenticate"]
 			if authHeaders != nil {
@@ -86,8 +84,6 @@ func (er EWSRoundTripper) RoundTrip(r *http.Request) (*http.Response, error) {
 				}
 			}
 
-		// So, do we know more than before? If so, try again.
-		if er.authType > authTypeUnknown {
 			if er.authType == authTypeNTLM {
 				// We need to replace the delegator.
 				er.delegate = &httpntlm.NtlmTransport{
@@ -96,13 +92,15 @@ func (er EWSRoundTripper) RoundTrip(r *http.Request) (*http.Response, error) {
 					Password: er.password,
 				}
 			}
-			er.initMutex.Unlock()
-			return er.RoundTrip(r)
 		}
 	}
+	er.initMutex.Unlock()
+
+	if er.authType == authTypeBasic {
+		r.SetBasicAuth(er.username, er.password)
+	}
 
-	er.initMutex.Unlock()
+	return er.delegate.RoundTrip(r)
-	return resp, err
 }
 
 func NewEWSCalendar(url, username, password string) *EWSCalendar {