[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [libmicrohttpd] digest auth TLS and POST

From: Christian Grothoff
Subject: Re: [libmicrohttpd] digest auth TLS and POST
Date: Sun, 12 Jan 2014 14:58:50 +0100
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20131103 Icedove/17.0.10

On 01/04/2014 05:03 AM, A. Mark wrote:
> Questions:
> 1) Getting a MHD_INVALID_NONCE from MHD_digest_auth_check() when
> authenticating on every request even when requests are one second apart. Is
> this due to the browsers inability to generate proper cnonce?  Both
> Chromium and Firefox exhibit this. (the same happens with
> digest_auth_example)

I've now tried to reproduce this using 'digest_auth_example'.  On the
first visit, I need to authenticate, then I push reload (possibly with
significant delay) and Firefox does NOT require me to re-enter the
password.  I also checked with wireshark to make sure it wasn't just
Firefox caching the password and submitting it on 2nd attempt, and it
is indeed only a single HTTP request going between client and server,
as one would expect.

So I'm still unable to reproduce your issue.

Happy hacking!


reply via email to

[Prev in Thread] Current Thread [Next in Thread]