How to use digest authentication in Tomcat 8.5?

前端未结

关注

 4  371

[愿得一人] 2020-12-17 00:48

I am trying to use the manager application that comes with Tomcat 8.5. However, every time that I try to log on with the password of \"test\" for the user \"admin\", it does

4条回答

离开以前 (楼主)

2020-12-17 01:14
Here's how you do it in 4 simple steps. Some of the above advice was missing some of the steps (like Step # 4). Also, -s 0 (salt 0) when generating the hash will work also.

1) Generate password: /bin>digest.bat -s 0 -a sha-256

Example: /bin>digest.bat -s 0 -a sha-256 admin

Password to use is: 8c6976e5b5410415bde908bd4dee15dfb167a9c873fc4bb8a81f6f2ab448a918

*Important note: You must use “-s 0 “(salt 0) or it won’t work.

2) paste password above into your tomcat-users.xml file.

Example:
3) configure server.xml to use SHA-256 digest hashed based passwords:
```
    
         
    
```
4) configure your web.xml to use “DIGEST” passwords and update RealmName to match above (in the HTMLManager section)
```
 /webapps/manager\WEB-INF\web.xml

    
        DIGEST
        UserDatabase 
    

Full context:
  
    HTMLManager
    org.apache.catalina.manager.HTMLManagerServlet
    
      debug
      2
    

… SNIPPED_FOR_BREVITY ...   

    
    DIGEST
    UserDatabase
  

    
      
      52428800
      52428800
      0
    
  
```
0 讨论(0)

查看其它4个回答
发布评论:

提交评论
- 加载中...