DigestAuthentication


This type is a class for model objects.

@since 7.0.0 This object configures the Digest Authentication, as described in RFC 2617, for HTTP and SIP (As defined in RFC 3261) protocols into the servlet container.

Package: security

Classifier ID:  -1
Instance class name:  * Unspecified *
Instance class:  * Unspecified *

Reference attributes having this type:
  AuthMechanism.digestAuthentication



Attributes Summary
disableSIPBasicAuth : EBoolean @since 7.0.0 Disable basic authentication for SIP. Replaces custom property com.ibm.ws.sip.tai.DisableSIPBasicAuth
enableDigestAuthenticationIntegrity : EBoolean @since 7.0.0 use digest auth-int option
cacheCleanPeriod : EInt @since 7.0.0 Peroid to clean the Ldap cache. Replaces custom property com.ibm.webspehere.sip.security.digest.ldap.cachecleanperiod.
passwordAttributeName : EString @since 7.0.0 The attribute name of the Ldap server that stores the password.
userCacheCleanPeriod : EInt @since 7.0.0 Period to clean the Principal/Subject cache. Replaces custom property com.ibm.websphere.sip.security.tai.usercachecleanperiod
nonceTimeToLive : EInt @since 7.0.0 Expiration of nonce value (minutes), if =<0 then nonce never expires. Replaces custom property com.ibm.websphere.sip.security.digest.NonceTimeToLive
digestPasswordServerClass : EString @since 7.0.0 Java Class name that implement the PasswordServer interface (we have default implementation for Ldap) Unit Tests:
hashedCreds : EString @since 7.0.0 If defined, contains the name of an LDAP field that contains the pre-hashed user credentials for a realm. At least one of PASSWORD_ATTRIBUTE_NAME or HASHED_CREDS_ATTRIBUTE_NAME must be defined.
hashedRealm : EString @since 7.0.0 The realm for which HASHED_CREDS_ATTRIBUTE_NAME is set. Must be defined if HASHED_CREDS_ATTRIBUTE_NAME is defined.
disableMultipleUseOfNonce : EBoolean @since 7.0.0 Disable multiple uses of the same nonce. Using the same nonce more than once is more efficient, but less secure.



Attribute Details

disableSIPBasicAuth  -  @since 7.0.0 Disable basic authentication for SIP. Replaces custom property com.ibm.ws.sip.tai.DisableSIPBasicAuth
    Data Type: EBoolean
    Default value:  true
    Required:  false
    Changeable:  true
    Unsettable:  true
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

enableDigestAuthenticationIntegrity  -  @since 7.0.0 use digest auth-int option
    Data Type: EBoolean
    Default value:  true
    Required:  false
    Changeable:  true
    Unsettable:  true
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

cacheCleanPeriod  -  @since 7.0.0 Peroid to clean the Ldap cache. Replaces custom property com.ibm.webspehere.sip.security.digest.ldap.cachecleanperiod.
    Data Type: EInt
    Default value:  120
    Required:  false
    Changeable:  true
    Unsettable:  true
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

passwordAttributeName  -  @since 7.0.0 The attribute name of the Ldap server that stores the password.
    Data Type: EString
    Default value:  
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

userCacheCleanPeriod  -  @since 7.0.0 Period to clean the Principal/Subject cache. Replaces custom property com.ibm.websphere.sip.security.tai.usercachecleanperiod
    Data Type: EInt
    Default value:  15
    Required:  false
    Changeable:  true
    Unsettable:  true
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

nonceTimeToLive  -  @since 7.0.0 Expiration of nonce value (minutes), if =<0 then nonce never expires. Replaces custom property com.ibm.websphere.sip.security.digest.NonceTimeToLive
    Data Type: EInt
    Default value:  1
    Required:  false
    Changeable:  true
    Unsettable:  true
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

digestPasswordServerClass  -  @since 7.0.0 Java Class name that implement the PasswordServer interface (we have default implementation for Ldap) Unit Tests:
    Data Type: EString
    Default value:  
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

hashedCreds  -  @since 7.0.0 If defined, contains the name of an LDAP field that contains the pre-hashed user credentials for a realm. At least one of PASSWORD_ATTRIBUTE_NAME or HASHED_CREDS_ATTRIBUTE_NAME must be defined.
    Data Type: EString
    Default value:  
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

hashedRealm  -  @since 7.0.0 The realm for which HASHED_CREDS_ATTRIBUTE_NAME is set. Must be defined if HASHED_CREDS_ATTRIBUTE_NAME is defined.
    Data Type: EString
    Default value:  
    Required:  false
    Changeable:  true
    Unsettable:  false
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false

disableMultipleUseOfNonce  -  @since 7.0.0 Disable multiple uses of the same nonce. Using the same nonce more than once is more efficient, but less secure.
    Data Type: EBoolean
    Default value:  true
    Required:  false
    Changeable:  true
    Unsettable:  true
    Many:  false
    Ordered:  true
    Lower bound:  0
    Upper bound:  1
    Unique:  true
    Derived:  false
    Transient:  false
    Volatile:  false



(C) COPYRIGHT International Business Machines Corp. 1996-2006