I've updated Ticket #7291 "implement http digest authentication" with fixes for generating a stateless nonce. I'm looking for some help to get this committed.
The nonce is based on time-stamp H(time-stamp ":" session.session_id). An associated nonce_valid? method verifies that the timestamp is recent. Gregg --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Ruby on Rails: Core" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/rubyonrails-core?hl=en -~----------~----~----~----~------~----~------~--~---
