tomcat realm with digest password configuration help

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

tomcat realm with digest password configuration help

philguillard
Hi,

I use tomcat-5.5.12, a Realm in memory, and decided a DIGEST password
with MD5, i use firefox 1.0.6. I can't pass the authentication. Have
nothing in logs. Any idea for what i missed there or what i should try?
Regards,

Phil

In conf/server.xml :
 <Realm className="org.apache.catalina.realm.MemoryRealm" debug="2"
digest="MD5"/>

In my web.xml :
<login-config>
  <!--<auth-method>BASIC</auth-method>-->
  <auth-method>DIGEST</auth-method>
  <realm-name>Protected area</realm-name>
</login-config>

#  ./digest.sh -a MD5 admin
admin:21232f297a57a5a743894a0e4a801fc3

In conf/tomcat-users.xml :
<tomcat-users>
  <role rolename="admin"/>
  <user username="admin" password="21232f297a57a5a743894a0e4a801fc3"
roles="admin"/>



---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|

Re: tomcat realm with digest password configuration help

markt
philguillard wrote:
> <Realm className="org.apache.catalina.realm.MemoryRealm" debug="2"
> digest="MD5"/>
>
> <login-config>
>  <!--<auth-method>BASIC</auth-method>-->
>  <auth-method>DIGEST</auth-method>
>  <realm-name>Protected area</realm-name>
> </login-config>

You are using DIGEST authentication AND digested passwords. You need
to generate the digest differently in this case. See
http://tomcat.apache.org/tomcat-5.5-doc/realm-howto.html

Mark


---------------------------------------------------------------------
To unsubscribe, e-mail: [hidden email]
For additional commands, e-mail: [hidden email]