(Classic ASP) HTTP Digest-MD5 Authentication Testing with httpbin.org

The URL https://httpbin.org/digest-auth/auth/user/passwd is password protected with user="user" and password="passwd". It requires Digest-MD5 authentication. Chilkat will automatically handle Digest-MD5 authentication as required by the server response. In this case, however, the server will fail the authentication unless a Cookie is included in the request. The cookie can have any name and any value. (Yes, this is ridiculous, and many developers have probably spent countless hours assuming their Digest-MD5 implementations were incorrect.)

Chilkat ActiveX Downloads ActiveX for 32-bit and 64-bit Windows

<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body>
<%
' This example assumes the Chilkat HTTP API to have been previously unlocked.
' See Global Unlock Sample for sample code.

' For versions of Chilkat < 10.0.0, use CreateObject("Chilkat_9_5_0.Http")
set http = Server.CreateObject("Chilkat.Http")

http.Login = "user"
http.Password = "passwd"

' Add a cookie to satisfy httpbin.org's desire for cookies..
' Otherwise, it will fail the perfectly valid Digest-MD5 authentication.
http.SetRequestHeader "Cookie","something=""something"""

strResponse = http.QuickGetStr("https://httpbin.org/digest-auth/auth/user/passwd")
If (http.LastMethodSuccess = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( http.LastErrorText) & "</pre>"
    Response.End
End If

Response.Write "<pre>" & Server.HTMLEncode( strResponse) & "</pre>"

status = http.LastStatus
Response.Write "<pre>" & Server.HTMLEncode( "response status code = " & status) & "</pre>"

' The output of this program is:
' 
' 	{ 
' 	  "authenticated": true, 
' 	  "user": "user"
' 	} 
' 
' 	response status code = 200

%>
</body>
</html>