DigestAuthenticationProvider
A digest Authentication provider.
This provider supports:
Multiple hash algorithms: MD5, SHA-256, SHA-512-256 (and their session variants)
Quality of Protection (qop): auth and auth-int
User hash for privacy protection
UTF-8 charset support
Security Note: SHA-512-256 is the recommended hash algorithm for new implementations. While MD5 is supported for backward compatibility, it is deprecated and should be avoided in production. Consider enabling Config.strictRfc7616Mode to enforce stronger algorithms.
Types
A configuration for the digest authentication provider.
Properties
A description of the provider that can be used for API documentation.
Authentication filters specifying if authentication is required for a particular ApplicationCall.
Functions
Authenticates a request based on AuthenticationContext. Implementations should either add a new AuthenticationContext.principal for successful authentication or register AuthenticationContext.challenge for failed ones.