tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "richard" <>
Subject RE: digest authentication
Date Thu, 29 Apr 2004 16:29:26 GMT

Did you save the digested password instead of the password itself?
During authentication, the passwords entered by the user is converted into a
digested password and then compared to the password stored for that user.


-----Original Message-----
From: Fábio Araújo [] 
Sent: Thursday, April 29, 2004 9:01 AM
Subject: digest authentication


	I'm a new Tomcat's user and I'm trying to configure Digest
Authentication without success. I'm able to work with Basic authentication
(login is working perfectly), but with digest the browser ask user and
password information but the user never get a success login. I tested with
Tomcat 5.0.19 and Tomcat 4.1.29 and got the same results. I tried access the
pages with 3 diferent browsers Mozzila 1.5, IE 6.0 and Konqueror 3.1-15.

	The only doc that I found tell to change the WEB.XML <auth-method>
tag to "DIGEST". 

	What is my error ?  Where can I find more documentation about digest
authentication using Tomcat ?

	Here is the relevant part of my web.xml:

    <display-name>Tomcat Server Configuration Security
      <web-resource-name>Protected Area</web-resource-name>
      <!-- Define the context-relative URL(s) to be protected -->
      <!-- Anyone with one of the listed roles may access this area -->

  <!-- Login configuration uses form-based authentication -->

    <realm-name>Tomcat Server Configuration DIGEST Authentication

  <!-- Security roles referenced by this web application -->
      The role that is required to log in to the Administration Application

Thank you in advance

Fábio Araújo

To unsubscribe, e-mail:
For additional commands, e-mail:

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message