Hello,

Im currently trying to build a digest authentication mechanism for Rest services. The client side is javascript and server-side, I use Spring-Security : the DigestAuthenticationFilter.

It works pretty well but it seems that spring-security doesn't check the "nc" property, the basic rule is that this property should have a bigger value (kind of a counter) for each subsequent request.

Is that normal or I'm missing something in my setup ?

Thanks for any information !