Our setup is: Glassfish version 3.1.1 - We are using Digest
Authentication(JDBC Realm). When Clients(IP is different) has same "cnonce",
401 response occurs. [NG_ClientA:10.22.49.11]
cnonce="fa847aab8968ad3528689641da46467e"
[OK_ClientB:10.22.49.122]cnonce="fa847aab8968ad3528689641da46467e" If
clients(IP is different) has same "cnonce", Glassfish reply always 401
response? Is there any way to avoid? server_access_log:
------------------------------ "10.22.49.11" "NULL-AUTH-USER"
"07/Feb/2013:21:12:59 +0900" "POST /sspf HTTP/1.1" 401 1007
"NULL-HEADER-AUTHORIZATION" "10.22.49.122" "NULL-AUTH-USER"
"07/Feb/2013:21:12:59 +0900" "POST /sspf HTTP/1.1" 401 1007
"NULL-HEADER-AUTHORIZATION" "10.22.49.122" "FJ-FCGWSSPFA-IQTNAKA7"
"07/Feb/2013:21:12:59 +0900" "POST /sspf HTTP/1.1" 200 468 "Digest
username="FJ-FCGWSSPFA-IQTNAKA7", realm="sspf_realm",
nonce="1360239183743:e694d053af1fe4c062f80bce7d9ad8b03f841569333e5af5e6a7d8c373979b60",
uri="/sspf", response="4bc3696a81764e96d9a50f6379ee7db4", qop=auth,
nc=00000001, cnonce="fa847aab8968ad3528689641da46467e",
opaque="A698C769B2D235C79997650882224FBD"" "10.22.49.11" "NULL-AUTH-USER"
"07/Feb/2013:21:12:59 +0900" "POST /sspf HTTP/1.1" 401 1007 "Digest
username="FJ-FCGWSSPFA-SVNODE11", realm="sspf_realm",
nonce="1360239183742:4703bb9c60b8649d145613f915526d0fd0b1709065389e002967c961cf82c49a",
uri="/sspf", response="ee8a91a45aa8410f0bacaa100841610e", qop=auth,
nc=00000001, cnonce="fa847aab8968ad3528689641da46467e",
opaque="A698C769B2D235C79997650882224FBD"" ------------------------------
--
[Message sent by forum member 'bscusr122']
View Post: http://forums.java.net/node/894647