Add default "Restricted" realm to HTTP Basic auth (#1007)

* Add default "Restricted" realm to HTTP Basic auth * Add tests for the Basic auth realm

Add default "Restricted" realm to HTTP Basic auth (#1007)
* Add default "Restricted" realm to HTTP Basic auth * Add tests for the Basic auth realm
681c95a7 · Stavros Korokithakis · Matt Holt · e5a89276 · 681c95a7 · 681c95a7
Commit 681c95a7 authored Aug 07, 2016 by Stavros Korokithakis Committed by Matt Holt Aug 07, 2016
Hide whitespace changes
Inline Side-by-side

Showing with 2 additions and 2 deletions

caddyhttp/basicauth/basicauth.go caddyhttp/basicauth/basicauth.go +1 -1

caddyhttp/basicauth/basicauth_test.go caddyhttp/basicauth/basicauth_test.go +1 -1

No files found.
--- a/caddyhttp/basicauth/basicauth.go
+++ b/caddyhttp/basicauth/basicauth.go
@@ -61,7 +61,7 @@ func (a BasicAuth) ServeHTTP(w http.ResponseWriter, r *http.Request) (int, error

 	if hasAuth {
 		if !isAuthenticated {
-			w.Header().Set("WWW-Authenticate", "Basic")
+			w.Header().Set("WWW-Authenticate", "Basic realm=\"Restricted\"")
 			return http.StatusUnauthorized, nil
 		}
 		// "It's an older code, sir, but it checks out. I was about to clear them."

--- a/caddyhttp/basicauth/basicauth_test.go
+++ b/caddyhttp/basicauth/basicauth_test.go
@@ -52,7 +52,7 @@ func TestBasicAuth(t *testing.T) {
 		if result == http.StatusUnauthorized {
 			headers := rec.Header()
 			if val, ok := headers["Www-Authenticate"]; ok {
-				if val[0] != "Basic" {
+				if val[0] != "Basic realm=\"Restricted\"" {
 					t.Errorf("Test %d, Www-Authenticate should be %s provided %s", i, "Basic", val[0])
 				}
 			} else {