caddy

github-mirror/caddy

Fork 0

mirror of https://github.com/caddyserver/caddy.git synced 2024-11-29 20:24:11 +08:00

Commit Graph

Author	SHA1	Message	Date
Matthew Holt	54acb9b2de	basicauth: Remove Authorization header on successful authz (issue #1324 ) If a site owner protects a path with basicauth, no need to use the Authorization header elsewhere upstream, especially since it contains credentials. If this breaks anyone, it means they're double-dipping. It's usually good practice to clear out credentials as soon as they're not needed anymore. (Note that we only clear credentials after they're used, they stay for any other reason.)	2017-01-03 17:47:27 -07:00
Stavros Korokithakis	681c95a749	Add default "Restricted" realm to HTTP Basic auth (#1007 ) * Add default "Restricted" realm to HTTP Basic auth * Add tests for the Basic auth realm	2016-08-07 07:50:36 -06:00
Matthew Holt	416af05a00	Migrating more middleware packages	2016-06-05 21:51:56 -06:00

Author

SHA1

Message

Date

Matthew Holt

54acb9b2de

basicauth: Remove Authorization header on successful authz (issue #1324 )

If a site owner protects a path with basicauth, no need
to use the Authorization header elsewhere upstream, especially since it
contains credentials.

If this breaks anyone, it means they're double-dipping. It's usually
good practice to clear out credentials as soon as they're not needed
anymore. (Note that we only clear credentials after they're used,
they stay for any other reason.)

2017-01-03 17:47:27 -07:00

Stavros Korokithakis

681c95a749

Add default "Restricted" realm to HTTP Basic auth (#1007 )

* Add default "Restricted" realm to HTTP Basic auth

* Add tests for the Basic auth realm

2016-08-07 07:50:36 -06:00

Matthew Holt

416af05a00

Migrating more middleware packages

2016-06-05 21:51:56 -06:00

3 Commits