1<testcase> 2<info> 3<keywords> 4HTTP 5HTTP GET 6HTTP Digest auth 7</keywords> 8</info> 9# Server-side 10<reply> 11<data> 12HTTP/1.1 401 Authorization Required 13Server: Apache/1.3.27 (Darwin) PHP/4.1.2 14WWW-Authenticate: Digest realm="testrealm", nonce="2053604145", algorithm="SHA-512-256", userhash=true 15Content-Type: text/html; charset=iso-8859-1 16Content-Length: 26 17 18This is not the real page 19</data> 20 21# This is supposed to be returned when the server gets a 22# Authorization: Digest line passed-in from the client 23<data1000> 24HTTP/1.1 401 Still a bad password you moron 25Server: Apache/1.3.27 (Darwin) PHP/4.1.2 26Content-Type: text/html; charset=iso-8859-1 27Content-Length: 34 28 29This is not the real page either 30</data1000> 31 32<datacheck> 33HTTP/1.1 401 Authorization Required 34Server: Apache/1.3.27 (Darwin) PHP/4.1.2 35WWW-Authenticate: Digest realm="testrealm", nonce="2053604145", algorithm="SHA-512-256", userhash=true 36Content-Type: text/html; charset=iso-8859-1 37Content-Length: 26 38 39HTTP/1.1 401 Still a bad password you moron 40Server: Apache/1.3.27 (Darwin) PHP/4.1.2 41Content-Type: text/html; charset=iso-8859-1 42Content-Length: 34 43 44This is not the real page either 45</datacheck> 46 47</reply> 48 49# Client-side 50<client> 51<server> 52http 53</server> 54<features> 55!SSPI 56crypto 57</features> 58 <name> 59HTTP with RFC7616 Digest authorization with bad password, SHA-512-256 and userhash=true 60 </name> 61 <command> 62http://%HOSTIP:%HTTPPORT/2066 -u testuser:test2pass --digest 63</command> 64</client> 65 66# Verify data after the test has been "shot" 67<verify> 68<strip> 69^User-Agent:.* 70</strip> 71<protocol> 72GET /2066 HTTP/1.1 73Host: %HOSTIP:%HTTPPORT 74Accept: */* 75 76GET /2066 HTTP/1.1 77Host: %HOSTIP:%HTTPPORT 78Authorization: Digest username="75af8a3500f771e58a52093a25e7905d6e428a511285c12ea1420c73078dfd61", realm="testrealm", nonce="2053604145", uri="/2066", response="a2e2ae589f575fb132991d6f550ef14bf7ef697d2fef1242d2498f07eafc77dc", algorithm="SHA-512-256", userhash=true 79User-Agent: curl/7.10.5 (i686-pc-linux-gnu) libcurl/7.10.5 OpenSSL/0.9.7a ipv6 zlib/1.1.3 80Accept: */* 81 82</protocol> 83</verify> 84</testcase> 85