News Feed
Jobs Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

PHPMaster.com:
Understanding HTTP Digest Access Authentication
May 21, 2013 @ 12:09:02

On PHPMaster.com they've posted a new tutorial by Sean Hudgston that helps you understand HTTP digest authentication, a simple way to authenticate a user or script against your application.

Digest Access Authentication is one method that a client and server can use to exchange credentials over HTTP. This method uses a combination of the password and other bits of information to create an MD5 hash which is then sent to the server to authenticate. Sending a hash avoids the problems with sending a password in clear text, a shortfall of Basic Access Authentication.

He starts out by looking at the "basic authentication" mechanism that's built into most web servers and points out that it has a major flaw - sending the username/password in (pretty much) plain text. Digest, on the other hand, uses a MD5 hash created from a few pieces of information including username, realm and request method. The result is sent as a header back to the server that can then be parsed by PHP. He also talks about improving on the basic version of the digest method using the qop, nc, and cnonce optional parameters.

0 comments voice your opinion now!
http digest authentication tutorial basic hash

Link: http://phpmaster.com/understanding-http-digest-access-authentication

blog comments powered by Disqus

Similar Posts

Pablo Viquez: PHP Step by Step Debugging with JMeter, XDebug & Eclipse PDT

Lorna Mitchell's Blog: Retrieving Data from Google Analytics API using PHP

SitePoint.com: OAuth for PHP Twitter Apps, Part I

PHPBuilder.com: Talking to Facebook's Social Graph with PHP

Mfana Ronald Conco's Blog: RabbitMQ and PHP Part 2 - Durable Queues and Persistent Messages


Community Events











Don't see your event here?
Let us know!


hack introduction language podcast composer security performance facebook package install release hhvm component application example project database unittest framework symfony2

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework