Commits · d5cc10f7aa479a7c29afcf51dd86c432c29398da · nexedi / caddy

An error occurred fetching the project authors.

13 Mar, 2017 1 commit

Added Const for use of CtxKeys (#1511) · d5cc10f7

Toby Allen authored 7 years ago

* Added Const for CtxKeys

* Move CtxKey Const declarations

* Fixed tests

* fix test

d5cc10f7

10 Mar, 2017 1 commit
- basicauth: Don't remove Authorization header on good auth (fixes #1508) · 6aa0e30a
  Matthew Holt authored 8 years ago
  
  6aa0e30a
09 Mar, 2017 1 commit

basicauth: Ability to customize realm (#1491) · e3e62a95

Kurt Jung authored 8 years ago

* Support realms with basic authentication

* Add test for default basicauth directive in which realm is not specified

* Correct typo: missing space

* Remove 'path' subdirective

e3e62a95

28 Feb, 2017 1 commit

Use RequestURI when redirecting to canonical path. (#1331) · 0a0d2cc1

ericdreeves authored 8 years ago

* Use RequestURI when redirecting to canonical path.

Caddy may trim a request's URL path when it starts with the path that's
associated with the virtual host. This change uses the path from the request's
RequestURI when performing a redirect.

Fix issue #1327.

* Rename redirurl to redirURL.

* Redirect to the full URL.

The scheme and host from the virtual host's site configuration is used
in order to redirect to the full URL.

* Add comment and remove redundant check.

* Store the original URL path in request context.

By storing the original URL path as a value in the request context,
middlewares can access both it and the sanitized path. The default
default FileServer handler will use the original URL on redirects.

* Replace contextKey type with CtxKey.

In addition to moving the CtxKey definition to the caddy package, this
change updates the CtxKey references in the httpserver, fastcgi, and
basicauth packages.

* httpserver: Fix reference to CtxKey

0a0d2cc1

17 Feb, 2017 1 commit

basicauth: Store name of authenticated user (#1426) · 977a3c32

Kurt Jung authored 8 years ago

* Store name of authenticated user in basicauth for use by upstream middleware such as fastcgi and cgi.

* Use request context to transfer name of authorized user from basicauth to upstream middleware. Test retrieval of name from context.

* Remove development code that was inadvertently left in place

* Use keys of type httpserver.CtxKey to access Context values

977a3c32

04 Jan, 2017 1 commit

basicauth: Remove Authorization header on successful authz (issue #1324) · 54acb9b2

Matthew Holt authored 8 years ago

If a site owner protects a path with basicauth, no need
to use the Authorization header elsewhere upstream, especially since it
contains credentials.

If this breaks anyone, it means they're double-dipping. It's usually
good practice to clear out credentials as soon as they're not needed
anymore. (Note that we only clear credentials after they're used,
they stay for any other reason.)

54acb9b2

05 Sep, 2016 1 commit
- Fix misspellings · 45a3d0b5
  Matthew Holt authored 8 years ago
  
  45a3d0b5
07 Aug, 2016 1 commit
- Add default "Restricted" realm to HTTP Basic auth (#1007) · 681c95a7
  Stavros Korokithakis authored 8 years ago
```
* Add default "Restricted" realm to HTTP Basic auth

* Add tests for the Basic auth realm
```
  681c95a7
05 Jul, 2016 1 commit
- Improve basicauth password comparison · f77264b7
  Matthew Holt authored 8 years ago
```
Thanks to @jaredfolkins for the feedback
```
  f77264b7
06 Jun, 2016 1 commit
- Migrating more middleware packages · 416af05a
  Matthew Holt authored 8 years ago
  
  416af05a