Skip Menu |

This queue is for tickets about the libwww-perl CPAN distribution.

Report information
The Basics
Id: 75908
Status: resolved
Priority: 0/
Queue: libwww-perl

Owner: Nobody in particular
Requestors: djhk [...]

Bug Information
Severity: (no value)
Broken in: 6.04
Fixed in: (no value)

Subject: digest authentication's stale nonce not handled
Download (untitled) / with headers
text/plain 524b
When an LWP::UserAgent instance authenticates repeatedly against a server using digest authentication, the re-used server supplied "nonce" token may eventually expire. In this case the server responds with 401, plus header values specifying the nonce is stale. The user agent now returns the 401 response to the caller. Shouldn't it re-authenticate silently using the updated nonce instead? Tested with libwww-perl-6.04, perl 5.10.1, Linux 2.6.32-5-amd6 against Apache 1.3 mod_auth_digest (and some IIS implementation).

This service is sponsored and maintained by Best Practical Solutions and runs on infrastructure.

Please report any issues with to