Win a copy of The Little Book of Impediments (e-book only) this week in the Agile and Other Processes forum!
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Regarding basic authentication

 
rachna jain
Ranch Hand
Posts: 76
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi All


When using basic authentication target server is not authenticated.

Can someone ckarify this
 
Sebastian Janisch
Ranch Hand
Posts: 1183
  • Likes 1
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Authentication means that the server or client really is who he claims to be.
In your case you ask about the server to prove who he claims to be.

This is achieved by an <auth-method> of CLIENT_CERT.

Basic is, well, a basic form of authenticating some party to the server. Information (including passwords) are shipped over the net with basic base64 encryption (which after all can not be called encryption).
 
Charles Lyons
Author
Ranch Hand
Posts: 836
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Sebastian Janisch wrote:with basic base64 encryption (which after all can not be called encryption).

Which is why it's called encoding into base64 and not encrypting!
 
Sebastian Janisch
Ranch Hand
Posts: 1183
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
ARRGGHH ... true
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic