<html><head><meta http-equiv="content-type" content="text/html; charset=utf-8"></head><body dir="auto"><div>On 1 Aug 2013, at 11:53, Nil Croustillac <<a href="mailto:nilcroustillac@gmail.com">nilcroustillac@gmail.com</a>> wrote:</div><div><br></div><blockquote type="cite"><div><div dir="ltr"><div><div>I noticed that but I wonder how to use it on server side and by starting/releasing a new server at each request.<br></div>I have seen the client example and it doesn't really help in my case.<br></div></div></div></blockquote><div><br></div>If you don't preserve a SASL context between Digest authentication steps, then I don't think you can use Cyrus SASL's version as is.<br><blockquote type="cite"><div><div dir="ltr"><div>
<br></div>I'll continue investigating but any help would be appreciated :)<br></div><div class="gmail_extra"><br><br><div class="gmail_quote">On Thu, Aug 1, 2013 at 11:42 AM, Alexey Melnikov <span dir="ltr"><<a href="mailto:alexey.melnikov@isode.com" target="_blank">alexey.melnikov@isode.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Actually, Cyrus SASL now supports HTTP Digest via a flag.<br>
<br>
Sent from my iPhone<br>
<div class="HOEnZb"><div class="h5"><br>
On 1 Aug 2013, at 08:08, Phil Pennock <<a href="mailto:cyrus-sasl-phil@spodhuis.org">cyrus-sasl-phil@spodhuis.org</a>> wrote:<br>
<br>
> On 2013-07-31 at 17:07 +0200, Nil Croustillac wrote:<br>
>> It's been a while now I am trying to implement the Digest authentication<br>
>> with the Cyrus SASL library and I don't understand how to proceed.<br>
>> I am using the version 2.1.25 and only support digest mechanism, here is<br>
>> the desired behaviour (which doesn't work)<br>
><br>
> HTTP does not use SASL as a framing layer.<br>
><br>
> You want to read RFC 2617 which explains what goes into the headers at<br>
> each step, and implement based on that. There are definite similarities<br>
> between HTTP Digest Authentication and DIGEST-MD5 as used in SASL, but a<br>
> SASL library won't typically help with HTTP.<br>
><br>
> You might try using libcurl instead?<br>
><br>
> -Phil<br>
</div></div></blockquote></div><br></div>
</div></blockquote></body></html>