algorithms
List of message digest algorithms to be used.
Supported algorithms:
MD5default, for backward compatibility (deprecated, avoid it in production)MD5-sesssession variant, deprecatedSHA-256recommended minimum for production useSHA-256-sesssession variantSHA-512-256recommended for new implementations (provides the strongest security)SHA-512-256-sesssession variant with the strongest security
When multiple algorithms are configured, the server will send multiple WWW-Authenticate headers, one per algorithm, allowing the client to choose.