1<testcase> 2<info> 3<keywords> 4HTTP 5HTTP GET 6HTTP Digest auth 7</keywords> 8</info> 9# Server-side 10<reply> 11<data> 12HTTP/1.1 401 Authorization Required 13Server: Apache/1.3.27 (Darwin) PHP/4.1.2 14WWW-Authenticate: Digest realm="testrealm", nonce="2053604145" 15Content-Type: text/html; charset=iso-8859-1 16Content-Length: 26 17 18This is not the real page 19</data> 20 21# This is supposed to be returned when the server gets a 22# Authorization: Digest line passed-in from the client 23<data1000> 24HTTP/1.1 401 Still a bad password you moron 25Server: Apache/1.3.27 (Darwin) PHP/4.1.2 26Content-Type: text/html; charset=iso-8859-1 27Content-Length: 34 28 29This is not the real page either 30</data1000> 31 32<datacheck> 33HTTP/1.1 401 Authorization Required 34Server: Apache/1.3.27 (Darwin) PHP/4.1.2 35WWW-Authenticate: Digest realm="testrealm", nonce="2053604145" 36Content-Type: text/html; charset=iso-8859-1 37Content-Length: 26 38 39HTTP/1.1 401 Still a bad password you moron 40Server: Apache/1.3.27 (Darwin) PHP/4.1.2 41Content-Type: text/html; charset=iso-8859-1 42Content-Length: 34 43 44This is not the real page either 45</datacheck> 46 47</reply> 48 49# Client-side 50<client> 51<server> 52http 53</server> 54<features> 55crypto 56</features> 57 <name> 58HTTP with Digest authorization with bad password 59 </name> 60 <command> 61http://%HOSTIP:%HTTPPORT/65 -u testuser:test2pass --digest 62</command> 63</client> 64 65# Verify data after the test has been "shot" 66<verify> 67<strip> 68^User-Agent:.* 69</strip> 70<protocol> 71GET /65 HTTP/1.1 72Host: %HOSTIP:%HTTPPORT 73Accept: */* 74 75GET /65 HTTP/1.1 76Authorization: Digest username="testuser", realm="testrealm", nonce="2053604145", uri="/65", response="66d68d3251f1839576ba7c766cf9205b" 77User-Agent: curl/7.10.5 (i686-pc-linux-gnu) libcurl/7.10.5 OpenSSL/0.9.7a ipv6 zlib/1.1.3 78Host: %HOSTIP:%HTTPPORT 79Accept: */* 80 81</protocol> 82</verify> 83</testcase> 84