Hi Mark - I appear to have the same issue here. What I've done is changed the default UserDatabase realm, added digest='MD5' and digested the passwords in the file. This works fine.
I've then changed web.xml to DIGEST authentication and re-digested the passwords as user:UserDatabase:password (as per the doc linked below) and this doesn't work. Is there anywhere I can look to debug this? What the doc doesn't explain is what you do with the digests. I am assuming that the digest generated by org.apache.catalina.realm.RealmBase is what you store in tomcat-users.xml as the password. I'm using Tomcat 5.0.28 on Windows at the moment for development. Thanks. Dan markt-2 wrote: > > If you switch from BASIC auth + MD5 digested password in realm to DIGEST > auth + MD5 digested password in realm then you will need to regenerate > the digests. > > In the BASIC auth + digested passwords case you digest: > password > > In the DIGEST auth + digested passwords case you digest: > username:realm:cleartext-password > > The realm is as specified in web.xml or, if not specifed, host:port > > http://tomcat.apache.org/tomcat-5.5-doc/realm-howto.html#Digested%20Passwords > explains this fully. > -- View this message in context: http://www.nabble.com/auth-mode%3DDIGEST-and-MD5-digested-passwords-tp4131183p17124820.html Sent from the Tomcat - User mailing list archive at Nabble.com. --------------------------------------------------------------------- To start a new topic, e-mail: users@tomcat.apache.org To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
