[jboss-jira] [JBoss JIRA] Updated: (AS7-777) Switchable Nonce Handling Strategy for HTTP DigestAuthenticator

Friday, 22 July 2011



     [
https://issues.jboss.org/browse/AS7-777?page=com.atlassian.jira.plugin.sy...
]

Darran Lofthouse updated AS7-777:
---------------------------------

    Fix Version/s: 7.1.0.Beta1
                       (was: 7.1.0.Alpha1)


...
 Switchable Nonce Handling Strategy for HTTP DigestAuthenticator
 ---------------------------------------------------------------

                 Key: AS7-777
                 URL: https://issues.jboss.org/browse/AS7-777
             Project: Application Server 7
          Issue Type: Task
          Components: Security
            Reporter: Darran Lofthouse
            Assignee: Darran Lofthouse
             Fix For: 7.1.0.Beta1


 Allow the nonce strategy to be switchable: -
 1 - Real 'Number Used Once' - i.e. new nonce for each request.
 2 - Nonce per connection i.e. as long as a connection is kept alive allow re-use of nonce
- new nonce on new connection.
 3 - Timed nonce - Generate a nonce with a server secret and timestamp, nonce will be
accepted for a validity period. 
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[jboss-jira] [JBoss JIRA] Updated: (AS7-777) Switchable Nonce Handling Strategy for HTTP DigestAuthenticator