Digest auth from HTTP to LDAP

Discussion in 'Java' started by Kevin McMurtrie, Jun 8, 2012.

  1. I have a situation where I need to authenticate an HTTP client with low
    latency on a LAN. It doesn't matter if the connection is watched, I
    only need to verify who is publishing data.

    Right now I'm using a Servlet filter that implements rfc2069 (Digest
    Access Authentication) to protect certain HTTP resources. It's getting
    pre-hashed passwords from a config file so there is no plaintext
    anywhere in the pipeline. I'd like for LDAP authentication to also be
    an option. LDAPv3 implements the same authentication scheme via SASL so
    this should be easy to pass through, right? The only LDAPv3 clients
    that I can find take a plaintext password and negotiate the digest
    themselves. Is there an LDAP client that will allow the caller to
    participate in the authentication?

    I know there are other solutions but they're not as elegant or easy to
    integrate into an existing LDAP database.
    --
    I will not see posts from Google because I must filter them as spam
    Kevin McMurtrie, Jun 8, 2012
    #1
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. John Reese
    Replies:
    3
    Views:
    427
    John Reese
    Jan 3, 2005
  2. Tammy Mc
    Replies:
    3
    Views:
    211
    Tammy Mc
    Oct 1, 2006
  3. Jonathan Rochkind

    http digest auth client?

    Jonathan Rochkind, Nov 22, 2010, in forum: Ruby
    Replies:
    3
    Views:
    251
    Ammar Ali
    Nov 23, 2010
  4. myalo
    Replies:
    4
    Views:
    1,284
    A. Sinan Unur
    Nov 28, 2007
  5. Replies:
    2
    Views:
    329
    Julian Cromarty
    Jun 26, 2013
Loading...

Share This Page