Book Image

RESTful Java Web Services, Second Edition

Book Image

RESTful Java Web Services, Second Edition

Overview of this book

Table of Contents (17 chapters)
RESTful Java Web Services Second Edition
Credits
About the Author
Acknowledgments
About the Reviewers
www.PacktPub.com
Preface
Index

HTTP digest authentication


The HTTP digest authentication authenticates a user based on a username and a password. However, unlike with basic authentication, the password is not transmitted in clear text between the client and the server. Instead, the client sends a one way cryptographic hash of the username, password, and a few other security related fields using the MD5 message-digest hash algorithm. When the server receives the request, it regenerates the hashed value for all the fields as done by client and compares it with the one present in the request. If the hashes match, the request is treated as authenticated and valid. To learn how to configure digest authentication realm in the GlassFish server, refer to Chapter 2, Administering User Security in GlassFish Security Guide, which you can download from https://glassfish.java.net/docs/4.0/security-guide.pdf.

If the client application uses the Jersey framework implementation, then the API to invoke RESTful web services secured via the...