문제

Is there a way to use LDAP as an authentication backend with HTTP Digest as authentication method to the client with Spring? I could not find anything about this in the documentation.

도움이 되었습니까?

해결책

You can use LDAP as a UserDetailsSService for DIGEST, but only when you have access to user's password in clear text. Excerpt from Spring Security documentation:

The configured UserDetailsService is needed because DigestAuthenticationFilter must have direct access to the clear text password of a user. Digest Authentication will NOT work if you are using encoded passwords in your DAO. The DAO collaborator, along with the UserCache, are typically shared directly with a DaoAuthenticationProvider. The authenticationEntryPoint property must be DigestAuthenticationEntryPoint, so that DigestAuthenticationFilter can obtain the correct realmName and key for digest calculations.

라이센스 : CC-BY-SA ~와 함께 속성
제휴하지 않습니다 StackOverflow
scroll top