1<testcase> 2<info> 3<keywords> 4HTTP 5HTTP GET 6HTTP Digest auth 7</keywords> 8</info> 9# Server-side 10<reply> 11<data> 12HTTP/1.1 401 Authorization Required swsclose 13Server: Apache/1.3.27 (Darwin) PHP/4.1.2 14WWW-Authenticate: Digest realm="testrealm", nonce="1053604145", algorithm="SHA-512-256" 15Content-Type: text/html; charset=iso-8859-1 16Content-Length: 26 17 18This is not the real page 19</data> 20 21# This is supposed to be returned when the server gets a 22# Authorization: Digest line passed-in from the client 23<data1000> 24HTTP/1.1 200 OK swsclose 25Server: Apache/1.3.27 (Darwin) PHP/4.1.2 26Content-Type: text/html; charset=iso-8859-1 27Content-Length: 23 28 29This IS the real page! 30</data1000> 31 32<datacheck> 33HTTP/1.1 401 Authorization Required swsclose 34Server: Apache/1.3.27 (Darwin) PHP/4.1.2 35WWW-Authenticate: Digest realm="testrealm", nonce="1053604145", algorithm="SHA-512-256" 36Content-Type: text/html; charset=iso-8859-1 37Content-Length: 26 38 39HTTP/1.1 200 OK swsclose 40Server: Apache/1.3.27 (Darwin) PHP/4.1.2 41Content-Type: text/html; charset=iso-8859-1 42Content-Length: 23 43 44This IS the real page! 45</datacheck> 46 47</reply> 48 49# Client-side 50<client> 51<server> 52http 53</server> 54<features> 55!SSPI 56crypto 57sha512-256 58</features> 59<name> 60HTTP with RFC7616 SHA-512-256 Digest authorization and userhash=false 61</name> 62<command> 63http://%HOSTIP:%HTTPPORT/%TESTNUMBER -u testuser:testpass --digest 64</command> 65</client> 66 67# Verify data after the test has been "shot" 68<verify> 69<protocol> 70GET /%TESTNUMBER HTTP/1.1 71Host: %HOSTIP:%HTTPPORT 72User-Agent: curl/%VERSION 73Accept: */* 74 75GET /%TESTNUMBER HTTP/1.1 76Host: %HOSTIP:%HTTPPORT 77Authorization: Digest username="testuser", realm="testrealm", nonce="1053604145", uri="/%TESTNUMBER", response="9d3256ee6526ec40dd48743bb48e51ee9baba587c78f15c3a86166242150af98", algorithm=SHA-512-256 78User-Agent: curl/%VERSION 79Accept: */* 80 81</protocol> 82</verify> 83</testcase> 84