Hawk is a MAC-based HTTP authentication scheme that provides partial cryptographic verification of HTTP messages. Hawk requires a symmetric key to be shared between the client and the server out-of-band. For more info, see here.
The client sends an HTTP request, like so.
The server returns a challenge, like so.
View original post 740 more words