Digest Authentification

Dave Cragg dcragg at lacscentre.co.uk
Thu Nov 21 05:04:01 CST 2002


At 9:20 pm -0500 20/11/02, rgould8 at aol.com wrote:
>Ok, I think I have just enough brain cells left to figure out 80% of
>the Digest Authentification in Revolution - - - I just need a little
>nudge over a few small potholes.
>
>A huge thanks to Yennie, who probably saved me 3 weeks of work
>trying to decypher the rfc for Digest Authentification.
>
>The first question I have is this:  what is the Revolution command
>to retrieve the header information of the html page that comes back?
>For instance, when I make my initial call to the device, putting
>URL:  http://192.168.1.1/isp/cpe_info.xml, I get a web-page that
>says:
>
>Page not available.  Protected Object.
>
>This is exactly what I'd expect to see, but what I really need is
>the header info that comes along with that page.  The header info
>should look something like this:
>
>HTTP/1.1
>401
>Unauthorized
>Digest realm="DSLUnit BEFDSR41W",
>nonce="8ce0cfdc62f8bdae849610f521a3538f", qop=auth
>
>I see Revolution commands to SET headers, but I'm just not seeing
>the command to GET the header.
>
>And then, if I'm reading the spec correctly, I'm supposed to reply
>with a new header which looks like this:
>
>GET /isp/cpe_info.xml HTTP/1.1
>DSL RouterUnit
>192.168.1.1
>Keep-Alive
>Digest username="admin", realm="DSLUnit BEFDSR41W", qop="auth",
>algorithm="MD5", uri="/isp/cpe_info.xml",
>nonce="8ce0cfdc62f8bdae849610f521a3538f", nc=00000001,
>cnonce-"f0f06d6390b9a311f9446d8a30fb2253",
>response="03b79aca10595873a3bf08f6de0b34e2"
>

Use libUrlLastRHHeaders() to retrieve the most recent set of headers 
sent from the remote host.

Something like:

get url myUrl
if 401 is in the result then
   put libUrlLastRHHeaders() into tRHHeaders
   ## then parse the headers

Cheers
Dave



More information about the use-livecode mailing list