HTTP
Click on the red underlined text to get to the source
... Reliance on the HTTP/1.1 Specification ...
...
This specification is a companion to the HTTP/1.1 specification [2].
It uses the augmented BNF ...
... both the non-terminals defined in that document and other aspects of
the HTTP/1.1 specification.
...
...
The HTTP protocol does not restrict applications to this simple
challenge-response mechanism for access authentication ...
...
The protocol referred to as "HTTP/1.0" includes the specification for
a Basic Access Authentication scheme[1 ...
... where time-stamp is a server-generated time or other non-repeating
value, ETag is the value of the HTTP ETag header associated with
the requested entity ...
... request-uri ; As specified by HTTP/1.1 ...
... transactions
interact with shared caches. The HTTP/1.1 protocol specifies that
when a shared cache (see section 13.7 of [2 ...
... The Authentication-Info header is allowed in the trailer of an HTTP
message transferred via chunked transfer-coding.
...
...
Note that the HTTP server does not actually need to know the user's
cleartext password. As long as H(A1) is available to the server, the
...
...
HTTP/1.1 401 Unauthorized
WWW-Authenticate: Digest
...
... Authorization headers specified in sections 10.33 and 10.34 of the
HTTP/1.1 specification [2] and their behavior is subject to
...
... physical network used as the
carrier. HTTP does not prevent additional authentication schemes and
encryption mechanisms ...
...
Many needs for secure HTTP transactions cannot be met by Digest
Authentication. For those needs TLS ...
...
An HTTP/1.1 server may return multiple challenges with a 401
(Authenticate) response, and each challenge may use a different
...
... );
/* calculate request-digest/response-digest as per HTTP Digest spec */
void DigestCalcResponse(
IN ...
... };
/* calculate request-digest/response-digest as per HTTP Digest spec */
void DigestCalcResponse(
IN ...
... Berners-Lee, T., Fielding, R. and H. Frystyk, "Hypertext Transfer Protocol -- HTTP/1.0", RFC 1945, May 1996. ...
... Fielding, R., Gettys, J., Mogul, J., Frysyk, H., Masinter, L., Leach, P. and T. Berners-Lee, "Hypertext Transfer Protocol -- HTTP/1.1", RFC 2616draft, June 1999. ...
... Franks, J., Hallam-Baker, P., Hostetler, J., Leach, P., Luotonen, A., Sink, E. and L. Stewart, "An Extension to HTTP : Digest Access Authentication", RFC 2069(-> 2617draft), January 1997. ...