Description
Http digest authentication security provider.
Usages
Configuration options
| Key | Kind | Type | Default Value | Description |
|---|---|---|---|---|
algorithm | VALUE | i.h.s.p.h.H.Algorithm | MD5 | Digest algorithm to use |
nonce-timeout-millis | VALUE | Long | 86400000 | How long will the nonce value be valid. When timed-out, browser will re-request username/password |
optional | VALUE | Boolean | false | Whether authentication is required |
principal-type | VALUE | i.h.s.SubjectType | USER | Principal type this provider extracts (and also propagates) |
qop | VALUE | i.h.s.p.h.H.Qop | NONE | Only `AUTH` supported. If left empty, uses the legacy approach (older RFC version). `AUTH-INT` is not supported |
realm | VALUE | String | Helidon | Set the realm to use when challenging users |
server-secret | LIST | String | The nonce is encrypted using this secret - to make sure the nonce we get back was generated by us and to make sure we can safely time-out nonce values | |
users | LIST | i.h.s.p.h.C.ConfigUser | Set user store to obtain passwords and roles based on logins |
See the manifest for all available types.