It would be useful if the Catalina Ant tasks supported HTTP Digest authentication, in addition to Basic authentication. This is convenient if one already has a digest-based security realm and doesn't want to maintain an extra tomcat-users.xml file. (And Basic authentication is terribly insecure.) Currently the AbstractCatalinaTask [1] just performs Basic authentication: // Set up an authorization header with our credentials String input = username + ":" + password; String output = new String(Base64.encode(input.getBytes())); hconn.setRequestProperty("Authorization", "Basic " + output); [1] http://svn.apache.org/repos/asf/tomcat/tc6.0.x/trunk/java/org/apache/catalina/ant/AbstractCatalinaTask.java
Patches are always welcome.
(In reply to comment #1) > Patches are always welcome. Is it ok to use something like commons-httpclient that does Digest auth?
Personally, I'd rather not add a dependency just for that.
There turned out to be a very simple solution that didn't require an external library using java.net.Authenticator. Fixed in: - trunk for 9.0.0.M22 onwards - 8.5.x for 8.5.16 onwards - 8.0.x for 8.0.45 onwards - 7.0.x for 7.0.78 onwards