tomcat-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Steinar Cook <steinar.c...@gmail.com>
Subject Usage of SecretKeyCredentialHandler and bin/digest.sh
Date Sun, 09 Oct 2016 21:24:28 GMT
Tomcat version:  9.0.0.M10
JDK: 1.8.0_45-b14

Operating system: Mac OS X "El Capitan" version 10.11.6

I have configured a SecretKeyCredentialHandler inside my Realm:

<CredentialHandler
className="org.apache.catalina.realm.SecretKeyCredentialHandler" />

I am using a DataSourceRealm, which works for plaintext passwords and plain
MD5 hash'ed passwords.

When switching to SecretKeyCredentialHandler I can no longer log in.

The password was created using digest.sh like so:

bin/digest.sh -a PBKDF2WithHmacSHA1 -h \

org.apache.catalina.realm.SecretKeyCredentialHandler ringo1

Which gave:
ringo1:33ad888cfe318597595149e0e23cc3fc795c0860261880cf1b1c39131f564e9e$20000$a4615c11201f2bcab83f5d576eb782b24be40e4d


I stored the "33ad88....4d" in the password column in the database.

Attempting to access the resource fails (401).

I am using BASIC authentication.

How do I generate a password which will be recognized by
SecretKeyCredentialHandler?

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message