11 (Access Authentication).
HTTP - (challenge-response), (challenge) , (authentication information). , (authentication scheme) - (attribute-value), , .
auth-scheme = token
auth-param = token "=" quoted-string
401 (, Unauthorized) (challenge) (authorization) . WWW-Authenticate, (challenge), .
challenge = auth-scheme 1*SP realm *( "," auth-param )
realm = "realm" "=" realm-value
realm-value = quoted-string
(realm) ( ) , (challenge). realm ( ), URL ( 5.1.2) , , (protection space). , / (authorization database). realm - , , , (authentication scheme).
, , , , 401 411, Authorization . Authorization (credentials), (authentication information) (realm) .
credentials = basic-credentials
| auth-scheme #auth-param
(domain), (credentials) , (protection space). , (credentials) (protection space) , , , / . , (protection space) (the scope of its server).
(credentials), , 401 (, Unauthorized). WWW-Authenticate, ( ) (challenge), , , .
HTTP - (challenge-response) . , (message encapsulation) , . .
- . WWW-Authenticate Authorization 14.8.
HTTP/1.1 - Proxy-Authenticate Proxy-Authorization.
11.1 (Basic Authentication Scheme).
"" , (user-ID) (password) (realm). (realm) (opaque) , . , (user-ID) (password) (protection space) URI (Request-URI). .
URI, (protection space), (challenge), :
WWW-Authenticate: Basic realm="WallyWorld"
"WallyWorld" - , ,
URI (Request-URI).
, (userid) (password), (":"), base64- (credentials).
basic-credentials = "Basic" SP basic-cookie
basic-cookie = <base64- [7] user-pass,
76
>
user-pass = userid ":" password
userid = *<TEXT ":">
password = *TEXT
Userid .
(userid) "Aladdin", (password) "open sesame", :
Authorization: Basic QWxhZGRpbjpvcGVuIHNlc2FtZQ==
, , 15.
11.2 (Digest Authentication Scheme).
HTTP RFC 2069 [32].