A friendly place for programming greenhorns!
Big Moose Saloon
Register / Login
Win a copy of
Android Security Essentials Live Lessons
this week in the
Web Component Certification (SCWCD/OCPJWCD)
Is CLIENT-CERT a part of servlet spec?
Joined: Jan 26, 2006
Jun 19, 2006 01:42:00
Is CLIENT-CERT a part of
spec? I think it is and supported by all application servers as it is mandated by the servlet specification.
According to my understanding:
BASIC � HTTTP spec
DIGEST- HTTP spec
FORM- servlet spec
CLIENT_CERT � servlet spec
Also, isn't the DIGEST supported by all browsers? A mock exams says �NO�.
Also, FORM auth method according to me used base 64 encoding. Correct me if I'm wrong here.
Joined: Mar 22, 2005
Jun 19, 2006 03:07:00
Several points in no particular order:
Whether or not CLIENT_CERT is part of the servlet spec is easy to determine, is it not?
FORM auth is just a fancier form of BASIC auth; both use base64-encoding.
You're right that DIGEST is not supported by all browsers. It is nonetheless required to be supported by servlet containers.
Ping & DNS
- my free Android networking tools app
I agree. Here's the link:
subject: Is CLIENT-CERT a part of servlet spec?
DIGEST authentication type
manning's question about AUTHENTICATION mechanisms
About authentication mechanisms
Doubt in auth methods
All times are in JavaRanch time: GMT-6 in summer, GMT-7 in winter
| Powered by
Copyright © 1998-2014