Encrypted password in database and browser digest auth
I wrote a small webserver which currently uses basic auth over ssl. So far
everything works great. Now I want (need) to switch to digest auth. But I
can't figure how out to make this work with passwords that are not stored
as cleartext in the database? I only have the password digest (generated
using bcrypt) of my users' passwords stored. Is http digest auth possible
at all?
No comments:
Post a Comment