[Seaside] Advice on writing secure webapps from a scarred friend

[Tim Rowledge]

Has anyone implemented HTTP Digest authorisation? I found the RFC 2617
to be faintly intelligable, but not enough to feel like diving in
myself. It's written in that terrible unix-man-page style that is so
information packed that it flips to semanticly null as soon as you stop
staring at it. since we have an MD5 plugin avilable it would seem to be
something of an improvement for (hopefully) relatively little work.

tim

-- 
Tim Rowledge, tim@sumeru.stanford.edu, http://sumeru.stanford.edu/tim
Useful random insult:- Strong, like bull.  Smart, like tractor.  Beautiful, like KV-2. (A WWII era Russian tank.)