aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack/lib/action_controller/metal/http_authentication.rb
Commit message (Expand)AuthorAgeFilesLines
* Merge pull request #14212 from tylerhunt/fix-token-regexSean Griffin2015-12-151-1/+1
|\
| * Handle tab in token authentication header.Tyler Hunt2014-02-261-1/+1
* | Use `Mime[:foo]` instead of `Mime::Type[:FOO]` for back compatJeremy Daer2015-10-061-2/+2
* | Document Bearer prefix for Authorization header [ci skip]Eliot Sykes2015-09-231-5/+7
* | Updated Mime Negotiations docs [ci skip]amitkumarsuroliya2015-09-231-2/+2
* | add a method for getting the http auth saltAaron Patterson2015-08-291-2/+2
* | env to get_header conversionAaron Patterson2015-08-291-1/+1
* | Authorization scheme should be case insensitive. Fixes #21199Dennis Suratna2015-08-111-1/+1
* | Stop using deprecated `render :text` in testPrem Sichanugrist2015-07-171-1/+1
* | Add missing "header" word in documentation of Token#authentication_request [...Prathamesh Sonpatki2015-06-141-1/+1
* | allow `Bearer` as well as `Token`phoet2015-06-011-1/+1
* | Give authentication methods the ability to customize response message.Keenan Brock2015-05-031-14/+16
* | Tiny optimization of http auth Realm unquotingStrech (Sergey Fedorov)2015-04-141-2/+2
* | Freeze static arguments for gsubbrainopia2015-04-021-2/+2
* | Prefer string patterns for gsubbrainopia2015-04-021-2/+2
* | Doc fix [ci skip]Sushruth Sivaramakrishnan2015-03-051-1/+1
* | Fixed undefined method error when doing authentication.Zhang Kai Yu2015-01-241-2/+2
* | Minor documentation edits [ci skip]Robin Dupret2014-12-281-1/+1
* | Update example test documentationBen Prew2014-12-281-4/+2
* | Merge pull request #17186 from tgxworld/header_authentication_tokenMatthew Draper2014-11-271-2/+9
|\ \
| * | Allow authentication header to not have to specify 'token=' key.Guo Xiang Tan2014-10-101-2/+9
* | | Wrap code snippets in +, not backticks, in sdocclaudiob2014-11-201-3/+3
|/ /
* | Improve token_and_options regex and testXinjiang Lu2014-07-011-1/+1
* | Fix parsed token value with header `Authorization token=`.Larry Lv2014-06-131-2/+2
* | Set the status before of setting the response bodyGuillermo Iguaran2014-06-131-2/+2
* | Merge pull request #11346 from tomykaira/fix_10257Rafael Mendonça França2014-05-201-2/+14
|\ \
| * | Run login_procedure only when the auth_scheme is validtomykaira2013-07-081-7/+14
| * | Check authentication scheme in Basic authtomykaira2013-07-071-1/+6
* | | Replace trivial regexp with string or index, twice as fastKelley Reynolds2014-03-281-1/+1
| |/ |/|
* | Update Docs in favor to use render plain instead of text optionrobertomiranda2014-02-181-6/+6
|/
* Prefer find_by over dynamic finders in rdocSam Ruby2013-04-021-2/+2
* Digest auth should not 500 when given a basic header.Brad Dunbar2013-03-181-0/+1
* Revert "Merge pull request #8989 from robertomiranda/use-rails-4-find-by"Guillermo Iguaran2013-01-181-2/+2
* User Rails 4 find_byrobertomiranda2013-01-181-2/+2
* Namespace HashWithIndifferentAccessAkira Matsuda2013-01-071-1/+1
* "warning: ambiguous first argument; put parentheses or even spaces"Akira Matsuda2012-12-241-1/+1
* Refactoring the token_and_options method to fix bugsKurtis Rainbolt-Greene2012-12-151-11/+27
* update documentation and code to use _action callbacksFrancesco Rodriguez2012-12-071-5/+5
* Allow users to change the default salt if they want, shouldn't be necessarySantiago Pastorino2012-11-031-2/+3
* Use derived keys everywhere, http_authentication was missing itSantiago Pastorino2012-11-031-3/+2
* Multiple changes to 1,9 hash syntaxAvnerCohen2012-10-271-10/+10
* Merge branch 'master' of github.com:lifo/docrailsVijay Dev2012-08-041-1/+1
|\
| * use 'HTTP_AUTHORIZATION' instead of :authorization as key when dealing with H...Francesco Rodriguez2012-07-271-1/+1
* | Merge pull request #7240 from steveklabnik/fix_2301Rafael Mendonça França2012-08-021-1/+1
|\ \
| * | Fix for digest authentication bug - issue #2301 in rails/railsArthur Smith2012-08-021-1/+1
* | | load active_support/core_ext/object/blank in active_support/railsXavier Noria2012-08-021-1/+0
|/ /
* / * Do not convert digest auth strings to symbols. CVE-2012-3424Aaron Patterson2012-07-261-2/+2
|/
* Don't raise an error if http auth token isn't well formattedPiotr Sarnacki2012-07-111-4/+6
* moar copy edits [ci skip]Vijay Dev2012-06-141-2/+1
* fixed http token authentication formattingJakub Kuźma2012-06-121-8/+13