I am using Jmix 2.1.3 and vaadin 24 and I need to Implement request digest is there any wat to implement request digest
“request digest” can refer to many different things. Could be useful if you elaborate more specifically on what you want to achieve.
If the MITM can try to modified the request or response. then the server should be restricted to allowed to accept this request or response.
You should use HTTPS to protect against all types of MITM attacks. Without HTTPS, you anyways have the problem that an attacker can replace any JavaScript that is sent to the browser since the browser in itself don’t have any way of verifying what it receives unless HTTPS is used.
Or on other words: what prevents the MITM from replicating the request digest algorithm that you would be using with the same data that the genuine client would use?