W3C home > Mailing lists > Public > www-amaya@w3.org > April to June 2003

Re: Digest Access Authentication probably broken

From: Jose Kahan <jose.kahan@w3.org>
Date: Thu, 10 Apr 2003 16:38:15 +0200
To: Henryk Pl?tz <henryk@ploetzli.ch>
Cc: www-amaya@w3.org
Message-ID: <20030410143815.GH10367@inrialpes.fr>

Henryk,

Thanks for your help. It helped me quickly find the bug and fix it. It's
commited on CVS now and will come out in the next release (hopefully
next week).

As the auth-int support wasn't complete, I disabled it for the time being,
until someone contributes that part of code or it becomes important to
have it.

-jose

On Thu, Apr 10, 2003 at 01:20:46PM +0200, Henryk Pl?tz wrote:
> 
> AuthDigestQop auth auth-int
> in the main apache configuration file, as well as my own Digest
> Authentication implementation in PHP. As I can't use the apache module
> on my public web server, I have created a modified version of that
> script which will tell you whether your browser works correct.
> 
> URL: http://www.ploetzli.ch/test/doauth.php
> username: guest, password: guest
> 
> Note: Although the script asks to use qop=auth-int (to trigger this
> bug), it is not implemented. However, currently I don't know of any
> browser that supports auth-int.
Received on Thursday, 10 April 2003 10:38:31 UTC

This archive was generated by hypermail 2.3.1 : Wednesday, 7 January 2015 14:53:27 UTC