1. Configure BASIC auth with clear-text passwords in the Realm and get that working. 2. Switch to DIGEST auth with clear-text passwords in the Realm and get that working. 3. Then configure DIGEST auth and digested passwords in the Realm. Hi Chris,
Step 1 & 2 work Step 3 will not work with the clear txt password, only the digested password, which means the text password in tomcat-users.xml. In past versions of Tomcat, the clear text password would work. On line # 1154 in Realmbase.java we read. String digestValue = username + ":" + realmName + ":" + getPassword(username); The method getPassword(username) is using the digested password, when it should use the clear text password. Here is how I run digest in powershell. .\digest.bat -a MD5 -i 1 -s 0 tomcat:UserDatabase:nobueno RealmBase.java is not using the clear text password, instead it is using the digested password. This will return false for the manager access. When I replace the getPassword(username) and replace it with the clear text password, it will then WORK. This e-mail and any files transmitted with it are the property of Arthrex, Inc. and/or its affiliates, are confidential, and are intended solely for the use of the individual or entity to whom this e-mail is addressed. If you are not one of the named recipient(s) or otherwise have reason to believe that you have received this message in error, please notify the sender at 239-643-5553 and delete this message immediately from your computer. Any other use, retention, dissemination forwarding, printing or copying of this e-mail is strictly prohibited. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of the company. Finally, while Arthrex uses virus protection, the recipient should check this email and any attachments for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by this email.