You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@tomcat.apache.org by ma...@apache.org on 2012/01/27 23:51:09 UTC
svn commit: r1236914 - /tomcat/trunk/webapps/docs/realm-howto.xml
Author: markt
Date: Fri Jan 27 22:51:08 2012
New Revision: 1236914
URL: http://svn.apache.org/viewvc?rev=1236914&view=rev
Log:
Fix https://issues.apache.org/bugzilla/show_bug.cgi?id=52515
Note that DIGEST auth requires MD5 digests
Modified:
tomcat/trunk/webapps/docs/realm-howto.xml
Modified: tomcat/trunk/webapps/docs/realm-howto.xml
URL: http://svn.apache.org/viewvc/tomcat/trunk/webapps/docs/realm-howto.xml?rev=1236914&r1=1236913&r2=1236914&view=diff
==============================================================================
--- tomcat/trunk/webapps/docs/realm-howto.xml (original)
+++ tomcat/trunk/webapps/docs/realm-howto.xml Fri Jan 27 22:51:08 2012
@@ -203,10 +203,10 @@ techniques are supported:</p>
</ul>
<p>If using digested passwords with DIGEST authentication, the cleartext used
- to generate the digest is different. In the examples above
- <code>{cleartext-password}</code> must be replaced with
- <code>{username}:{realm}:{cleartext-password}</code>. For example, in a
- development environment this might take the form
+ to generate the digest is different and the digest must use the MD5
+ algorithm. In the examples above <code>{cleartext-password}</code> must be
+ replaced with <code>{username}:{realm}:{cleartext-password}</code>. For
+ example, in a development environment this might take the form
<code>testUser:Authentication required:testPassword</code>. The value for
<code>{realm}</code> is taken from the <code><realm-name></code>
element of the web application's <code><login-config></code>. If
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org
For additional commands, e-mail: dev-help@tomcat.apache.org