Update README.

0d944f8e · iv · fd1e273a · 0d944f8e
Commit 0d944f8e authored Dec 03, 2015 by iv
Show whitespace changes
Inline Side-by-side

Showing with 16 additions and 3 deletions

README.md README.md +16 -3

No files found.
--- a/README.md
+++ b/README.md
@@ -2,15 +2,28 @@
 WebDAV server based on Flask.
-## Generate a certificate at the project's root
+## Code
-openssl req -nodes -newkey rsa -days 365 -keyout "ssl.key" -x509 -out "ssl.cert"
+### HTTPS support
+flaskdav supports HTTPS when running with options <code>--cert path/to/certificate</code> and <code>--key path/to/key</code>.
+To generate a private key and associated SSL certificate:
+<pre><code>openssl req -nodes -newkey rsa -days 365 -keyout "ssl.key" -x509 -out "ssl.cert"</code></pre>
+### Cookie authentication
+A cookie is set for every different Origin and contains a HMAC signature of the Origin and the User-Agent of the app accessing it. The cookie is set with HttpOnly flag, so that it cannot be read by JavaScript apps.
+The HMAC key is reset each time you restart the server.
 ## LICENSE
 flaskdav is under the GPL2 license.
 utils.py is a modified version of PyWebDAV's server/fshandler.py under GPL2 License
 original file: https://code.google.com/p/pywebdav/source/browse/pywebdav/server/fshandler.py
 ## TODO
- setting up cookie for authorized access
 - LOCK/UNLOCK support
 - PROPFIND/PROPPATCH support