Hello, I'm trying to switch from HTTP Basic (through an HTTPS channel) to HTTP Digest (keeping the HTTPS channel) authentication.
I'm currently testing without HTTPS, and I was wondering how should my 'backend' store the user credentials. Currently I'm using an MD5 hash of the password, so I cannot retrieve the 'clear text' password apparently needed by a LocalVerifier. Is storing the clear text password the ONLY way I can use HTTP Digest authentication for my Restlet application, or is there another way where I can use HTTP Digest while keeping the password stored securely? Thanks in advance for your answers. -- Fabián Mandelbaum IS Engineer ------------------------------------------------------ http://restlet.tigris.org/ds/viewMessage.do?dsForumId=4447&dsMessageId=3076417
