[
https://jira.nuxeo.org/browse/NXP-6212?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=87218#action_87218
]
Florent Guillaume commented on NXP-6212:
----------------------------------------
# Option 1.1 : store digest-compatible hash
For SQL backends, allow storage (and retrieval) of the digest password as a
special H(A1) digest, compatible with what Digest Auth uses. This needs the
realm to be in the directory config.
But this is not compatible with the way LDAP stores encrypted passwords.
> Add HTTP Digest Auth support in Nuxeo (RFC 2617)
> ------------------------------------------------
>
> Key: NXP-6212
> URL: https://jira.nuxeo.org/browse/NXP-6212
> Project: Nuxeo Enterprise Platform
> Issue Type: New Feature
> Components: Security / Rights
> Reporter: Thierry Delprat
> Assignee: Thierry Delprat
> Fix For: 5.4.1
>
>
> We need to implement RFC 2617 HTTP DIGEST AUTH support in Nuxeo.
> Even if the standard is old and not widely used, it is a requirement for
> WSS/WebDav under recent versions of MS Windows.
> An initial implementation has been contributed by Gagnavarslan
> => see : http://hg.nuxeo.com/sandbox/nuxeo-fs-connector/rev/712c9a606296
> This initial implementation contains both a AuthPlugin (for the filter) and a
> LoginModulePlugin (for the LoginModule).
> See : http://tools.ietf.org/html/rfc2617
> See : http://en.wikipedia.org/wiki/Digest_access_authentication
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
https://jira.nuxeo.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
_______________________________________________
ECM-tickets mailing list
[email protected]
http://lists.nuxeo.com/mailman/listinfo/ecm-tickets
