Digest Authentification
Dave Cragg
dcragg at lacscentre.co.uk
Thu Nov 21 05:04:01 EST 2002
At 9:20 pm -0500 20/11/02, rgould8 at aol.com wrote:
>Ok, I think I have just enough brain cells left to figure out 80% of
>the Digest Authentification in Revolution - - - I just need a little
>nudge over a few small potholes.
>
>A huge thanks to Yennie, who probably saved me 3 weeks of work
>trying to decypher the rfc for Digest Authentification.
>
>The first question I have is this: what is the Revolution command
>to retrieve the header information of the html page that comes back?
>For instance, when I make my initial call to the device, putting
>URL: http://192.168.1.1/isp/cpe_info.xml, I get a web-page that
>says:
>
>Page not available. Protected Object.
>
>This is exactly what I'd expect to see, but what I really need is
>the header info that comes along with that page. The header info
>should look something like this:
>
>HTTP/1.1
>401
>Unauthorized
>Digest realm="DSLUnit BEFDSR41W",
>nonce="8ce0cfdc62f8bdae849610f521a3538f", qop=auth
>
>I see Revolution commands to SET headers, but I'm just not seeing
>the command to GET the header.
>
>And then, if I'm reading the spec correctly, I'm supposed to reply
>with a new header which looks like this:
>
>GET /isp/cpe_info.xml HTTP/1.1
>DSL RouterUnit
>192.168.1.1
>Keep-Alive
>Digest username="admin", realm="DSLUnit BEFDSR41W", qop="auth",
>algorithm="MD5", uri="/isp/cpe_info.xml",
>nonce="8ce0cfdc62f8bdae849610f521a3538f", nc=00000001,
>cnonce-"f0f06d6390b9a311f9446d8a30fb2253",
>response="03b79aca10595873a3bf08f6de0b34e2"
>
Use libUrlLastRHHeaders() to retrieve the most recent set of headers
sent from the remote host.
Something like:
get url myUrl
if 401 is in the result then
put libUrlLastRHHeaders() into tRHHeaders
## then parse the headers
Cheers
Dave
More information about the use-livecode
mailing list