[MarkLogic Dev General] digest vs digestbasic

[Sam Neth]

This is almost but not precisely accurate.

Prior to 4.1-2, the XDBC server could understand only basic authentication, so XCC clients prior to 4.1-2 pre-emptively sent basic authentication.  Newer clients will make a request first, and respond appropriately to a challenge from the server for the method of authentication it prefers.  If digest is enabled, the server will request it.  So with an older client, basic credentials will be sent (in the clear) to the server, regardless of which type of authentication is enabled there.  If the server allows basic authentication (basic or digestbasic), the request will succeed if the credentials are valid.

It is best to configure servers to require digest authentication, unless backwards compatibility with older clients is required.

On Mar 25, 2010, at 2:02 PM, Andrew Welch wrote:


The difference is "digestbasic" tries digest first, then falls back to basic...


On 25 March 2010 20:48, Paul M <pjmaip at yahoo.com<mailto:pjmaip at yahoo.com>> wrote:
I created an XCC server. The authentication was digest. I attempted to use XCC uri with default password. It failed. I changed the authentication to digestbasic, XCC uri with default password succeeded.

Difference between the two?




_______________________________________________
General mailing list
General at developer.marklogic.com<mailto:General at developer.marklogic.com>
http://xqzone.com/mailman/listinfo/general




--
Andrew Welch
http://andrewjwelch.com<http://andrewjwelch.com/>
Kernow: http://kernowforsaxon.sf.net/
_______________________________________________
General mailing list
General at developer.marklogic.com<mailto:General at developer.marklogic.com>
http://xqzone.com/mailman/listinfo/general

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://xqzone.marklogic.com/pipermail/general/attachments/20100325/18cee9fc/attachment.html