This article transferred from: http://www.cnblogs.com/lanxiaoke/p/6357501.htmlSummary Certification Simple introductionAbstract authentication is the improvement of the basic authentication, that is, the use of abstract instead of account password, so as to prevent the disclosure of account password in plaintext transmissionPrior to the summary certification is not very familiar with, but also thanks to the
In the previous article, we mainly discussed the use of HTTP Basic authentication method, because the way HTTP Basic authentication determines that it has a large security problem, so next look at another way to verify: Digest authentication, that is, Digest authentication.S
Asp. NET permission Authentication seriesAsp: Forms AuthenticationAsp: HTTP Basic Authentication (http Base)NET rights authentication: Windows authenticationAsp: Digest Authentication (digest
No authentication method
After a correct client request is sent to the server, the HTTP server returns the 200 status code and directly returns the content.
Message example:
Request:
Get. http: // 10.127.194.3: 8061/voiceobjects .....
Return Value:
HTTP/1.1.200. OK .date:. Fri,. 28. oct.20 .....
Ii. Basic Authentication Method
The Basic Authentication and
Reference URL:
Http://www.faqs.org/rfcs/rfc2617.html
Http://www.faqs.org/rfcs/rfc1321.html
Http://www.cnblogs.com/my_life/articles/2285649.html
Http://blog.sina.com.cn/s/blog_53b15ed5010006t9.html
Http://blog.chinaunix.net/uid-26212859-id-3485297.html
Http://blog.csdn.net/jackxinxu2100/article/details/5610448#reply
Http://www.vsharing.com/k/KM/2003-1/458471.html
Http://support.microsoft.com/kb/811318/zh-cn
The first five are important, and the first two are the most important.
A thttpd Web serv
Preface:
When the client fails to carry non-anonymous authentication modes such as Basic Authentication/digest authentication in IIS, the client must provide the corresponding credential.
Important Notes:
1. How to generate proxy class
When using the WSDL command, you must provide the user name and password con
HTTP Authentication SIP provides a stateless, trial-and-error mechanism for the authentication system. This mechanism is based on HTTP authentication. At any time, the proxy server or UA receives a request (except in section 22.1), which attempts to check the identity confirmation provided by the request initiator. Whe
Check the HTTP Digest authentication code example-JSP, digest-jsp
Check HTTP Digest authentication. since http1.1
The Code is as follows: (this code is not complete, and RFC2617 is not implemented ).
The code is described above ,.
be approved (granted) or disapproved (rejected). Resources include individual files or an item ' s data, computer programs, computer devices and functionality provided by CO Mputer Applications. Examples of consumers is computer users, computer softwares and other Hardware on the Computer.
Authorization is the assignment of resources to different user roles prior to Authentication.Digest message detailedhttp://blog.csdn.net/andrewpj/article/details/45727853
Server verifies use
, however, intended to replace strong authentication protocols, such as Public-key or Kerberos authentication.
two authentication mechanisms for HTTP protocol (RFC2616) (Basic and Digest)SIP is similar to the HTTP protocol. The
authentication module to verify the credential's validity.
Digest Authentication
Step 1:
The client requests the service through anonymouse authentication.
Step 2:
After the server receives the request, it specifies in its HTTP header that its authentication mode i
"Digest" Authentication (Digest authentication) is a simple authentication mechanism, originally developed for the HTTP protocol, and is often called an HTTP digest, described in RFC2671. Its
secure HTTP transactions. For these requirements, it is more appropriate to use Transport Layer Security (Transport layer Safety, TLS) and secure HTTP (secure HTTP, HTTPS) protocols.However, abstract authentication is much more powerful than the basic authentication it is to replace. Abstract authentication is also much more powerful than many of the common stra
An alternative method of Basic authentication proposed by Certified Digest authentication ←http1.1
Server-side to nonce for questioning, the client to the user name, password, nonce,http method, the request URI, such as the basis of information generated by the response information to authenticate the way.
※ Clear Text delivery without a password
Summary
authentication method that inherits HTTP. According to Rfc2617,http's certification scheme, there are two kinds of Basic authentication scheme and digest Access authentication scheme. The basic method used by the password to verify the original way, easy to be stolen, so SIP
to call through your asterisk. friend is both.
But what is the actual situation? Try the following definition:[1001]Username = 1001Secret = XXXXXHost = dynamicPort = 5060Type = peerContext = from-extensions
Then, use a SIP client to register it with your Asterisk. What happened?You will find that the client can also be registered!
In fact, the true significance of type lies in how the asterisk processes requests sent to and from the external.Type = p
Similar to the content of the basic article, the difference is that the process uses the Digest certification:
Tomcat configuration:
1 Create a new directory under Tomcat WebApps Authen, then create a subdirectory subdir, below a index.jsp
2 Set up the Web-inf directory under the Authen directory, and devolve the Web. xml file as follows
XML code
3 in the Tomcat Tomcat-users.xml file, add a user name password of test,test user, role test.
protocols. However, abstract authentication is much more powerful than the basic authentication it is to replace.How Digest Authentication WorksHere's how Digest authentication Works (simplified version):A) The client has request
authorization request header information to decrypt, and compares with the user database to judge whether is legitimate, the legal will return the OK. The RFC 2617 specification in Basic authentication does not send Authentication-info head, Authentication-info Head is added in digest certification
650) this.width=
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.