Having just looked into the same thing, I found the following two articles to be an extremely useful introduction:
http://www.rassoc.com/gregr/weblog/stories/2002/07/09/webServicesSecurityHttpDigestAuthenticationWithoutActiveDirectory.html http://www.xml.com/lpt/a/2003/12/17/dive.html And as Mark indicates, RFC 2617 is ultimately the definitive reference. Jay | Jay Burgess [Vertical Technology Group] | http://www.vtgroup.com/ -----Original Message----- From: Mark Thomas [mailto:[EMAIL PROTECTED] Sent: Monday, March 13, 2006 12:41 PM To: Tomcat Users List Subject: Re: Working flow of Authentication Jeyabalan, Prakash wrote: > Could any one pls get me the detail in flow of Digest Authentication. http://www.ietf.org/rfc/rfc2617.txt?number=2617 Mark --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]