Martin, looking at the Api Docs, your suggestion is correct. I think my assumption is incorrect, I thought Restlet needed the scheme in the Authorization Header to lookup which helper to use to handle the challengeresponse. Now I am curious how this Authenticator is used, I'll look into it or maybe somebody else has a suggestion?
------------------------------------------------------ http://restlet.tigris.org/ds/viewMessage.do?dsForumId=4447&dsMessageId=2933791
