[
https://issues.apache.org/jira/browse/CXF-6748?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Freeman Fang reassigned CXF-6748:
---------------------------------
Assignee: Freeman Fang
> the qop,nc,algorithm parameter in http auth header must not be enclosed
> between doble quotation
> ------------------------------------------------------------------------------------------------
>
> Key: CXF-6748
> URL: https://issues.apache.org/jira/browse/CXF-6748
> Project: CXF
> Issue Type: Bug
> Reporter: Freeman Fang
> Assignee: Freeman Fang
>
> Per RFC 2617[1], the Authorization Request Header should be
> {code}
> credentials = "Digest" digest-response
> digest-response = 1#( username | realm | nonce | digest-uri
> | response | [ algorithm ] | [cnonce] |
> [opaque] | [message-qop] |
> [nonce-count] | [auth-param] )
> username = "username" "=" username-value
> username-value = quoted-string
> digest-uri = "uri" "=" digest-uri-value
> digest-uri-value = request-uri ; As specified by HTTP/1.1
> message-qop = "qop" "=" qop-value
> cnonce = "cnonce" "=" cnonce-value
> cnonce-value = nonce-value
> nonce-count = "nc" "=" nc-value
> nc-value = 8LHEX
> response = "response" "=" request-digest
> request-digest = <"> 32LHEX <">
> LHEX = "0" | "1" | "2" | "3" |
> "4" | "5" | "6" | "7" |
> "8" | "9" | "a" | "b" |
> "c" | "d" | "e" | "f"
> {code}
> The httpclient has similar issue[2] which already get fixed
> [1]https://tools.ietf.org/html/rfc2617
> [2]https://github.com/nahi/httpclient/issues/27
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
