Commit message (Collapse) | Author | Age | |
---|---|---|---|
* | digestauth: added support for SHA-512/256, made MD5 and SHA-256 optional | Evgeny Grin (Karlson2k) | 2022-09-11 |
| | | | | | Give more flexibility for custom builds: MD5, SHA-256 and SHA-512/256 may be disabled individually. | ||
* | digestauth: keep results of algo and QOP parsing, renamed public struct member | Evgeny Grin (Karlson2k) | 2022-08-25 |
| | |||
* | gen_auth: fixed fail on semicolon in parameter value | Evgeny Grin (Karlson2k) | 2022-08-25 |
| | |||
* | gen_auth: fixed usage of 'assert()' | Evgeny Grin (Karlson2k) | 2022-08-24 |
| | |||
* | gen_auth: added support for two authorization headers in request | Evgeny Grin (Karlson2k) | 2022-08-09 |
| | |||
* | gen_auth: cosmetics | Evgeny Grin (Karlson2k) | 2022-07-25 |
| | |||
* | gen_auth: fixed detection of userhash in Digest Auth requests | Evgeny Grin (Karlson2k) | 2022-07-25 |
| | |||
* | gen_auth: simplified value assignment | Evgeny Grin (Karlson2k) | 2022-06-06 |
| | |||
* | Simplified Digest Auth code by using the new string processing functions | Evgeny Grin (Karlson2k) | 2022-06-06 |
| | |||
* | gen_auth: do not allow semicolon for diget auth unless it is in a quoted string | Evgeny Grin (Karlson2k) | 2022-06-05 |
| | | | | Also forbid binary zero | ||
* | gen_auth: do not allow the equal sign alone for digest auth | Evgeny Grin (Karlson2k) | 2022-06-05 |
| | |||
* | gen_auth: added detection of incorrect delimiters in token68 | Evgeny Grin (Karlson2k) | 2022-06-05 |
| | |||
* | gen_auth: detect invalid Digest parameters without value the end of the string | Evgeny Grin (Karlson2k) | 2022-06-05 |
| | |||
* | gen_auth: treat empty header as invalid | Evgeny Grin (Karlson2k) | 2022-06-05 |
| | |||
* | Request authorisation: detect possibly valid, but unsupported type | Evgeny Grin (Karlson2k) | 2022-06-05 |
| | |||
* | Muted compiler warnings for W32 non-TLS build of the lib | Evgeny Grin (Karlson2k) | 2022-06-02 |
| | |||
* | authentication: reworked header parsing | Evgeny Grin (Karlson2k) | 2022-05-31 |
Added single function to parse all enabled authentication schemes header strings. The parsing result is cached and reused thus avoiding repetitive header parsing. The new function correctly "unquotes" values (backslashes are removed) as required by RFC. |