2 - Fix broken synopsis. RT#75254
5 - Add require_ssl configuration setting.
6 - Add no_unprompted_authorization_required configuration setting.
9 - Call store_digest_authorization_nonce() instead of $c->cache->set()
10 in authenticate_digest() (RT#63669) (rjk)
11 - Make Test::Exception and Test::MockObject be listed as test_requires
12 rather than requires (RT#54029)
13 - Skip WWW::Mech tests unless WWW::Mech is a new enough version (RT#55303).
14 - Improve documentation for authenticate_digest() (rjk)
15 - depends on Catalyst::Plugin::Cache, not Catalyst::Plugin::Session
16 - reorganize and clarify
19 - Move actions out of the test applications to stop warnings.
21 - Make Pod tests author only.
24 - Added true/false check to _debug option
27 - Moved tests out to t/lib/ (dhoss)
29 - Add debug when a user is found, but passwords don't match (abraxxa)
32 - Remove use of _config accessor, which I'd stupidly cargo-culted.
33 As we don't ever run in auth back-compat mode, we can store
34 everything in instance data without worrying about conflicts.
35 Note however - have to keep the accessor itself so that our
36 parent class (which is still stupid and uses it) continues to work.
39 - Fix issue with the user not being authenticated into the correct
40 realm, by not calling $c->set_authenticated ourselves, but instead
41 just returning the user object. Fix suggested by Bernhard Graf. (t0m)
42 - Add test for this (t0m)
43 - Change $user to $user_obj in authenticate_digest for consistency (t0m)
46 - Add test for query strings in digest auth as digest header is built using
48 - Fix for this (Peter Corlett)
49 - Fix warning when used with self_check => 1 (t0m)
50 - Added respository info to META.yml (t0m)
53 - Added username_field configuration option. I need this to play
54 nice with Catalyst::Authentication::Store::Tangram.
55 - Doc cleanups / clarifications related to RT#39838
58 - Added better description of the use of the domains and
59 use_uri_for options (info culled from RFC2617).
60 - Split init method out to make this module easier to sub-class
61 (used by Catalyst::Authentication::HTTP::Proxy).
64 - Add tests for use_uri_for configuration options.
65 - Add tests and documentation for storing an MD5
66 of "$user:$relam:$password" instead of cleartext password
67 when doing digest auth.
70 - Add ability to override the realm name presented for authentication
71 when calling $c->authenticate. Documentation and tests for this.
72 - Clean up documentation of options inherited from
73 Catalyst::Authentication::Credential::Password.
74 - Added an example of calling methods in the credential module from a
75 controller to the POD.
76 - Tests for the authorization_required_message configuration parameter.
77 - Document use_uri_for configuration option
78 - Document domain option (passed through from $c->authenticate) and add
79 tests for this option.
82 - Fix the assumptions that the password field is named password when doing
86 - Fix some of the assumptions about the user class by inheriting from the
87 Catalyst::Authentication::Credential::Password module. This should make
88 using DBIC as a store work correctly for basic auth.
89 - Updated synopsis and todo list, this module still needs some work before
90 it's ready for prime time again..
93 - Rename to remove Plugin from namespace. This is a pretty breaking change,
94 as lots of things work differently with the new auth refactor.
95 - Pull out some functionality which I think is better in other
96 modules (realms/stores). With the auth refactor, this module didn't need
97 to do so much. If anyone misses any of the functionality, please yell at
98 me and I'll put it back.
101 - Changed cache modules used in the tests to not be deprecated.
102 - Fix RT#31036, and comply with RFC2617 Section 1.2.
105 - switch to Module::Install
110 - add body to 401 status
113 - Fix basic test when using Test::MockObject 1.07 (die if using undefined
117 - Applied Ton Voon's patch that fixed option propagation for basic auth.
120 - Refactored internals into smaller methods