> -----Original Message----- > From: Mark Thomas <ma...@apache.org> > Sent: Tuesday, August 24, 2021 11:41 AM > To: users@tomcat.apache.org > Subject: Re: UserDatabaseRealm and DIGEST > > On 24/08/2021 17:28, jonmcalexan...@wellsfargo.com.INVALID wrote: > > Ok, so I've been reading thru the documentation on DIGEST but not > entirely sure I have it right. What is the best practice for DIGEST and what > algorithms are allowed, such as is sha-256 allowed? > > First, a question of clarification. > > Do you mean HTTP DIGEST authentication or do you mean storing password > hashes rather than the actual passwords in the UserDatabaseRealm? > > Mark > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org
I mean the Password Hashes rather than the actual password for the UserDatabaseRealm. Thank you, Jon McAlexander --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org