public function testHttpDigestAuthWithPhpCgiBogus()
{
$digest = 'Digest_username="foo", realm="acme", nonce="' . md5('secret') . '", uri="/protected, qop="auth"';
$this->_setServerVar(array('HTTP_AUTHORIZATION' => $digest));
// Username and passwords should not be set as the header is bogus
$headers = Http::getHeaders();
isFalse(isset($headers['PHP_AUTH_USER']));
isFalse(isset($headers['PHP_AUTH_PW']));
}