--- /dev/null
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">\r
+<HTML>\r
+<HEAD>\r
+ <link rel="stylesheet" type="text/css" href="../style/doc.css"><style type="text/css">\r
+body { margin: 20pt; color: black; background: white; font-family: helvetica;} \r
+</STYLE>\r
+ <TITLE>The DigestAuthFilter reference manual</TITLE>\r
+ <LINK HREF="jigsaw@w3.org" REL="made">\r
+</HEAD>\r
+<BODY>\r
+<P>\r
+<A HREF="../../.." TARGET="_top_">\r
+<IMG SRC="../../../Icons//WWW/w3c_home.gif" ALT="W3C" BORDER="0" WIDTH="72"\r
+ HEIGHT="48"> </A><A HREF="../../" TARGET="_top_">\r
+<IMG SRC="../../../Icons//jigsaw" ALT="Jigsaw"BORDER="0"></A>\r
+ <hr noshade size="1">\r
+<A HREF="resources.html">All resources</A> <A HREF="frames.html">All frames\r
+</A> \r
+ <hr noshade size="1">\r
+<H1>\r
+ DigestAuthFilter\r
+</H1>\r
+<P>\r
+The DigestAuthFilter provides digest authentication mechanism, as described\r
+in draft-ietf-http-authentication. It is just a test implementation, and\r
+only the password authentication is done, unlike GenericAuthFilter which\r
+provides also IP authentication. A new interface will be around soon.\r
+<P>\r
+The filter is configured to allow only some users or groups of users to access\r
+the information it protects. User are stored in a realm database. If no users\r
+are specified, all the users of the realm are allowed.\r
+<P>\r
+You should also note that if the filter is set on the protocol frame of a\r
+Container, it will protect also all its childs recursively.\r
+<P>\r
+ <hr noshade size="1">\r
+<H2>\r
+ Inherits\r
+</H2>\r
+<P>\r
+The\r
+<A HREF="http://jigsaw.w3.org/Doc/Programmer/api/org/w3c/jigsaw/auth/DigestAuthFilter.html">DigestAuthFilter</A>\r
+class inerits from the following classes:\r
+<UL>\r
+ <LI>\r
+ <A HREF="org.w3c.tools.resources.Resource.html">Resource</A>\r
+ <LI>\r
+ <A HREF="org.w3c.tools.resources.FramedResource.html">FramedResource</A>\r
+ <LI>\r
+ <A HREF="org.w3c.tools.resources.ResourceFrame.html">ResourceFrame</A>\r
+ <LI>\r
+ <A HREF="org.w3c.tools.resources.ResourceFilter.html">ResourceFilter</A>\r
+ <LI>\r
+ <A HREF="org.w3c.jigsaw.auth.AuthFilter.html">AuthFilter</A>\r
+</UL>\r
+<P>\r
+ <hr noshade size="1">\r
+<H2>\r
+ Attributes description\r
+</H2>\r
+<P>\r
+The DigestAuthFilter defines the following attributes:\r
+<UL>\r
+ <LI>\r
+ <A HREF="#users">users</A>\r
+ <LI>\r
+ <A HREF="#groups">groups</A>\r
+ <LI>\r
+ <A HREF="#algorithm">algorithm</A>\r
+ <LI>\r
+ <A HREF="#nonce_ttl">nonce_ttl</A>\r
+</UL>\r
+<P>\r
+ <hr noshade size="1">\r
+<CODE><A NAME="users">users</A></CODE>\r
+<DL>\r
+ <DT>\r
+ <I>semantics</I>\r
+ <DD>\r
+ The list of the users in this realm, that are allowed to access the information\r
+ protected by this filter\r
+ <DT>\r
+ <I>type</I>\r
+ <DD>\r
+ This attribute is an editable\r
+ <A HREF="http://jigsaw.w3.org/Doc/Programmer/api/org/w3c/tools/resources/StringArrayAttribute.html">StringArrayAttribute</A>\r
+ <DT>\r
+ <I>default value</I>\r
+ <DD>\r
+ This attribute defaults to <B>null</B>.\r
+</DL>\r
+<P>\r
+ <hr noshade size="1">\r
+<CODE><A NAME="groups">groups</A></CODE>\r
+<DL>\r
+ <DT>\r
+ <I>semantics</I>\r
+ <DD>\r
+ The list of groups allowed to access informations protected by this filter.\r
+ <DT>\r
+ <I>type</I>\r
+ <DD>\r
+ This attribute is an editable\r
+ <A HREF="http://jigsaw.w3.org/Doc/Programmer/api/org/w3c/tools/resources/StringArrayAttribute.html">StringArrayAttribute</A>\r
+ <DT>\r
+ <I>default value</I>\r
+ <DD>\r
+ This attribute defaults to <B>null</B>.\r
+</DL>\r
+<P>\r
+ <hr noshade size="1">\r
+<CODE><A NAME="algorithm">algorithm</A></CODE>\r
+<DL>\r
+ <DT>\r
+ <I>semantics</I>\r
+ <DD>\r
+ The algorithm used to encode/decode information, could be SHA, MD5 or some\r
+ others.\r
+ <DT>\r
+ <I>type</I>\r
+ <DD>\r
+ This attribute is an editable\r
+ <A HREF="http://jigsaw.w3.org/Doc/Programmer/api/org/w3c/tools/resources/StringAttribute.html">StringAttribute</A>\r
+ <DT>\r
+ <I>default value</I>\r
+ <DD>\r
+ This attribute defaults to "MD5".\r
+</DL>\r
+<P>\r
+ <hr noshade size="1">\r
+<CODE><A NAME="nonce_ttl">nonce_ttl</A></CODE>\r
+<DL>\r
+ <DT>\r
+ <I>semantics</I>\r
+ <DD>\r
+ The Time To Live of the nonce (somewhere linked to the challenge). To avoid\r
+ attack by repetition, you should set it to a low value, but if the value\r
+ is too low, it may generate too many round trips between the client and the\r
+ server. The unit is one second.\r
+ <DT>\r
+ <I>type</I>\r
+ <DD>\r
+ This attribute is an editable\r
+ <A HREF="http://jigsaw.w3.org/Doc/Programmer/api/org/w3c/tools/resources/IntegerAttribute.html">IntegerAttribute</A>\r
+ <DT>\r
+ <I>default value</I>\r
+ <DD>\r
+ This attribute defaults to <B>300</B>.\r
+</DL>\r
+<P>\r
+<P>\r
+ <hr noshade size="1">\r
+<P>\r
+<I><A HREF="mailto:jigsaw@w3.org">Jigsaw Team</A><BR>\r
+$Id: org.w3c.jigsaw.auth.DigestAuthFilter.html,v 1.1 1999/03/24 09:29:40\r
+bmahe Exp $</I>\r
+</BODY></HTML>\r
projects / Benchmarks_CSolver.git / blobdiff