module ActionController::HttpAuthentication::Digest

def validate_nonce(secret_key, request, value, seconds_to_timeout = 5 * 60)

without prompting the user again for their username and password.
the Stale directive is implemented. This would allow a user to use new nonce
or POST, and if the client is a browser or web service. Can be much shorter if
Might want a shorter timeout depending on whether the request is a PATCH, PUT,

def validate_nonce(secret_key, request, value, seconds_to_timeout = 5 * 60)
  return false if value.nil?
  t = ::Base64.decode64(value).split(":").first.to_i
  nonce(secret_key, t) == value && (t - Time.now.to_i).abs <= seconds_to_timeout
end

Instance Methods

# authenticate
# authentication_header
# authentication_request
# decode_credentials
# decode_credentials_header
# encode_credentials
# expected_response
# ha1
# nonce
# opaque
# secret_token
# validate_digest_response
# validate_nonce

Modules

Classes

module ActionController::HttpAuthentication::Digest

def validate_nonce(secret_key, request, value, seconds_to_timeout = 5 * 60)

Instance Methods