DigestAuthentication
This type is a class for model objects.
@since 7.0.0 This object configures the Digest Authentication, as described in RFC 2617, for HTTP and SIP (As defined in RFC 3261) protocols into the servlet container.
Package: security
Classifier ID: -1
Instance class name: * Unspecified *
Instance class: * Unspecified *
Reference attributes having this type:
AuthMechanism.digestAuthentication
Attributes Summary disableSIPBasicAuth : EBoolean @since 7.0.0 Disable basic authentication for SIP. Replaces custom property com.ibm.ws.sip.tai.DisableSIPBasicAuth enableDigestAuthenticationIntegrity : EBoolean @since 7.0.0 use digest auth-int option cacheCleanPeriod : EInt @since 7.0.0 Peroid to clean the Ldap cache. Replaces custom property com.ibm.webspehere.sip.security.digest.ldap.cachecleanperiod. passwordAttributeName : EString @since 7.0.0 The attribute name of the Ldap server that stores the password. userCacheCleanPeriod : EInt @since 7.0.0 Period to clean the Principal/Subject cache. Replaces custom property com.ibm.websphere.sip.security.tai.usercachecleanperiod nonceTimeToLive : EInt @since 7.0.0 Expiration of nonce value (minutes), if =<0 then nonce never expires. Replaces custom property com.ibm.websphere.sip.security.digest.NonceTimeToLive digestPasswordServerClass : EString @since 7.0.0 Java Class name that implement the PasswordServer interface (we have default implementation for Ldap) Unit Tests: hashedCreds : EString @since 7.0.0 If defined, contains the name of an LDAP field that contains the pre-hashed user credentials for a realm. At least one of PASSWORD_ATTRIBUTE_NAME or HASHED_CREDS_ATTRIBUTE_NAME must be defined. hashedRealm : EString @since 7.0.0 The realm for which HASHED_CREDS_ATTRIBUTE_NAME is set. Must be defined if HASHED_CREDS_ATTRIBUTE_NAME is defined. disableMultipleUseOfNonce : EBoolean @since 7.0.0 Disable multiple uses of the same nonce. Using the same nonce more than once is more efficient, but less secure.
Attribute Details
disableSIPBasicAuth - @since 7.0.0 Disable basic authentication for SIP. Replaces custom property com.ibm.ws.sip.tai.DisableSIPBasicAuth
Data Type: EBoolean
Default value: true
Required: false
Changeable: true
Unsettable: true
Many: false
Ordered: true
Lower bound: 0
Upper bound: 1
Unique: true
Derived: false
Transient: false
Volatile: false
enableDigestAuthenticationIntegrity - @since 7.0.0 use digest auth-int option
Data Type: EBoolean
Default value: true
Required: false
Changeable: true
Unsettable: true
Many: false
Ordered: true
Lower bound: 0
Upper bound: 1
Unique: true
Derived: false
Transient: false
Volatile: false
cacheCleanPeriod - @since 7.0.0 Peroid to clean the Ldap cache. Replaces custom property com.ibm.webspehere.sip.security.digest.ldap.cachecleanperiod.
Data Type: EInt
Default value: 120
Required: false
Changeable: true
Unsettable: true
Many: false
Ordered: true
Lower bound: 0
Upper bound: 1
Unique: true
Derived: false
Transient: false
Volatile: false
passwordAttributeName - @since 7.0.0 The attribute name of the Ldap server that stores the password.
Data Type: EString
Default value:
Required: false
Changeable: true
Unsettable: false
Many: false
Ordered: true
Lower bound: 0
Upper bound: 1
Unique: true
Derived: false
Transient: false
Volatile: false
userCacheCleanPeriod - @since 7.0.0 Period to clean the Principal/Subject cache. Replaces custom property com.ibm.websphere.sip.security.tai.usercachecleanperiod
Data Type: EInt
Default value: 15
Required: false
Changeable: true
Unsettable: true
Many: false
Ordered: true
Lower bound: 0
Upper bound: 1
Unique: true
Derived: false
Transient: false
Volatile: false
nonceTimeToLive - @since 7.0.0 Expiration of nonce value (minutes), if =<0 then nonce never expires. Replaces custom property com.ibm.websphere.sip.security.digest.NonceTimeToLive
Data Type: EInt
Default value: 1
Required: false
Changeable: true
Unsettable: true
Many: false
Ordered: true
Lower bound: 0
Upper bound: 1
Unique: true
Derived: false
Transient: false
Volatile: false
digestPasswordServerClass - @since 7.0.0 Java Class name that implement the PasswordServer interface (we have default implementation for Ldap) Unit Tests:
Data Type: EString
Default value:
Required: false
Changeable: true
Unsettable: false
Many: false
Ordered: true
Lower bound: 0
Upper bound: 1
Unique: true
Derived: false
Transient: false
Volatile: false
hashedCreds - @since 7.0.0 If defined, contains the name of an LDAP field that contains the pre-hashed user credentials for a realm. At least one of PASSWORD_ATTRIBUTE_NAME or HASHED_CREDS_ATTRIBUTE_NAME must be defined.
Data Type: EString
Default value:
Required: false
Changeable: true
Unsettable: false
Many: false
Ordered: true
Lower bound: 0
Upper bound: 1
Unique: true
Derived: false
Transient: false
Volatile: false
hashedRealm - @since 7.0.0 The realm for which HASHED_CREDS_ATTRIBUTE_NAME is set. Must be defined if HASHED_CREDS_ATTRIBUTE_NAME is defined.
Data Type: EString
Default value:
Required: false
Changeable: true
Unsettable: false
Many: false
Ordered: true
Lower bound: 0
Upper bound: 1
Unique: true
Derived: false
Transient: false
Volatile: false
disableMultipleUseOfNonce - @since 7.0.0 Disable multiple uses of the same nonce. Using the same nonce more than once is more efficient, but less secure.
Data Type: EBoolean
Default value: true
Required: false
Changeable: true
Unsettable: true
Many: false
Ordered: true
Lower bound: 0
Upper bound: 1
Unique: true
Derived: false
Transient: false
Volatile: false
(C) COPYRIGHT International Business Machines Corp. 1996-2006