Once you have a Hawk client implementation ready for testing you can run it against a server which has been set up using this Java implementation. The full details of how to test are as follows:
The Server
The server is available at http://hawk.wealdtech.com/. It has a single resource available, at http://hawk.wealdtech.com/helloworld, which accepts both GET and POST requests.
Server Credentials
There are two users configured on the server, Steve and John. Their Hawk credentials are shown below, and can be used when testing authentication against the server.
Steve
First set of Hawk credentials:
Key ID
dh37fgj492je
Key
werxhqb98rpaxn39848xrunpaw3489ruxnpa98w4rxn
Algorithm
SHA-256
Second set of Hawk credentials:
Key ID
m971bc0s34bs
Key
l01xyW713Mmnvt7kKasGOaWelnoawgp9aq239vgilr
Algorithm
SHA-256
John
Only set of Hawk credentials:
Key ID
jns7y9824hus
Key
mb708923nzgr87t4fsnt48ufnjt4y98zjkby98t43tw
Algorithm
SHA-256
Server Responses
On a successful authentication the server will return a status of 200 and respond with "Hello name", where name is the name of the user whose credentials you used to authenticate the request. On an unsuccessful authentication the server will return a status of 401 and respond with JSON output that will contain some additional information about why the authentication failed.
Unexpected Error Responses
If it appears that the server is providing an incorrect response please raise this as an issue and it will be investigated. When raising such issues please ensure that you provide the full authentication header or bewit being sent, as well as the text string from which the MAC is composed.