http_digest_password

Documentation
- Reference manual
- Packages
  - SWI-Prolog HTTP support
    - The HTTP server libraries
      - library(http/http_digest): HTTP Digest authentication
        
        http_digest_challenge//2
        
        http_parse_digest_challenge/2
        
        http_digest_response/5
        
        http_digest_password_hash/4
        
        authenticate/3
        
        authenticate_client/2

Availability::- use_module(library(http/http_digest)).

[det]http_digest_password_hash(+User, +Realm, +Password, -Hash)

Compute the password hash for the HTTP password file. Note that the HTTP digest mechanism does allow us to use a seeded expensive arbitrary hash function. Instead, the hash is defined as the MD5 of the following components:

<user>:<realm>:<password>.

The inexpensive MD5 algorithm makes the hash sensitive to brute force attacks while the lack of seeding make the hashes sensitive for rainbow table attacks, although the value is somewhat limited because the realm and user are part of the hash.