[catagits/Catalyst-Authentication-Credential-HTTP.git] / Changes

1.016 2013-07-27
   - Fix repository metadata. RT#87114

1.015 2012-06-27
   - Add broken_dotnet_digest_without_query_string option

     Allows digest authentication from .NET, which does not include the
     query string in the uri in the digest Authorization header.

   - Fix broken synopsis. RT#75254

1.014 2012-02-05
   - Add require_ssl configuration setting.
   - Add no_unprompted_authorization_required configuration setting.

1.013 2010-12-14
   - Call store_digest_authorization_nonce() instead of $c->cache->set()
     in authenticate_digest() (RT#63669) (rjk)
   - Make Test::Exception and Test::MockObject be listed as test_requires
     rather than requires (RT#54029)
   - Skip WWW::Mech tests unless WWW::Mech is a new enough version (RT#55303).
   - Improve documentation for authenticate_digest() (rjk)
     - depends on Catalyst::Plugin::Cache, not Catalyst::Plugin::Session
     - reorganize and clarify

1.012 2010-03-07
   - Move actions out of the test applications to stop warnings.

   - Make Pod tests author only.

1.011 2009-06-26
   - Added true/false check to _debug option

1.010 2009-05-14
   - Moved tests out to t/lib/ (dhoss)

   - Add debug when a user is found, but passwords don't match (abraxxa)

1.009  2009-01-04
   - Remove use of _config accessor, which I'd stupidly cargo-culted.
     As we don't ever run in auth back-compat mode, we can store
     everything in instance data without worrying about conflicts.
     Note however - have to keep the accessor itself so that our
     parent class (which is still stupid and uses it) continues to work.

1.008  2008-12-10
  - Fix issue with the user not being authenticated into the correct
    realm, by not calling $c->set_authenticated ourselves, but instead
    just returning the user object. Fix suggested by Bernhard Graf. (t0m)
    - Add test for this (t0m)
  - Change $user to $user_obj in authenticate_digest for consistency (t0m)

1.007  2008-11-19
  - Add test for query strings in digest auth as digest header is built using
    the full URI (t0m)
  - Fix for this (Peter Corlett)
  - Fix warning when used with self_check => 1 (t0m)
  - Added respository info to META.yml (t0m)

1.006  2008-10-06
  - Added username_field configuration option. I need this to play
    nice with Catalyst::Authentication::Store::Tangram.
  - Doc cleanups / clarifications related to RT#39838

1.005  2008-09-25
  - Added better description of the use of the domains and
    use_uri_for options (info culled from RFC2617).
  - Split init method out to make this module easier to sub-class
    (used by Catalyst::Authentication::HTTP::Proxy).

1.004  2008-09-12
   - Add tests for use_uri_for configuration options.
   - Add tests and documentation for storing an MD5
     of "$user:$relam:$password" instead of cleartext password
     when doing digest auth.

1.003  2008-09-11
   - Add ability to override the realm name presented for authentication
     when calling $c->authenticate. Documentation and tests for this.
   - Clean up documentation of options inherited from 
     Catalyst::Authentication::Credential::Password.
   - Added an example of calling methods in the credential module from a 
     controller to the POD.
   - Tests for the authorization_required_message configuration parameter. 
   - Document use_uri_for configuration option
   - Document domain option (passed through from $c->authenticate) and add 
     tests for this option.

1.002  2008-09-03
   - Fix the assumptions that the password field is named password when doing 
     digest auth.

1.001  2008-09-02
   - Fix some of the assumptions about the user class by inheriting from the
     Catalyst::Authentication::Credential::Password module. This should make
     using DBIC as a store work correctly for basic auth.
   - Updated synopsis and todo list, this module still needs some work before
     it's ready for prime time again..

1.000  2008-09-01
   - Rename to remove Plugin from namespace. This is a pretty breaking change,
     as lots of things work differently with the new auth refactor.
   - Pull out some functionality which I think is better in other 
     modules (realms/stores). With the auth refactor, this module didn't need
     to do so much. If anyone misses any of the functionality, please yell at
     me and I'll put it back.

0.11  2008-07-12
    - Changed cache modules used in the tests to not be deprecated.
    - Fix RT#31036, and comply with RFC2617 Section 1.2.

0.10  2007-04-26
    - switch to Module::Install

0.09  2006-12-31
    - clean up tests
    - clean up docs
    - add body to 401 status

0.08  2006-10-12
    - Fix basic test when using Test::MockObject 1.07 (die if using undefined
      interfaces)

0.07  2006-09-12
    - Applied Ton Voon's patch that fixed option propagation for basic auth.

0.06  2006-09-07
    - Refactored internals into smaller methods
Commit	Line	Data
7401b289	1	1.016 2013-07-27
91173826	2	- Fix repository metadata. RT#87114
91173826	3
f3ed6bfb	4	1.015 2012-06-27
a3abf05a	5	- Add broken_dotnet_digest_without_query_string option
	6
	7	Allows digest authentication from .NET, which does not include the
	8	query string in the uri in the digest Authorization header.
	9
9a901542	10	- Fix broken synopsis. RT#75254
9a901542	11
9fd0d1fb	12	1.014 2012-02-05
282361af	13	- Add require_ssl configuration setting.
	14	- Add no_unprompted_authorization_required configuration setting.
	15
c90a7aa2	16	1.013 2010-12-14
6e2204bc	17	- Call store_digest_authorization_nonce() instead of $c->cache->set()
6e2204bc	18	in authenticate_digest() (RT#63669) (rjk)
ab6b1f6f	19	- Make Test::Exception and Test::MockObject be listed as test_requires
ab6b1f6f	20	rather than requires (RT#54029)
3aff571e	21	- Skip WWW::Mech tests unless WWW::Mech is a new enough version (RT#55303).
1cd102dc	22	- Improve documentation for authenticate_digest() (rjk)
	23	- depends on Catalyst::Plugin::Cache, not Catalyst::Plugin::Session
	24	- reorganize and clarify
3aff571e	25
bd020dd7	26	1.012 2010-03-07
	27	- Move actions out of the test applications to stop warnings.
	28
ac0351e1	29	- Make Pod tests author only.
ac0351e1	30
9c02f7aa	31	1.011 2009-06-26
9c02f7aa	32	- Added true/false check to _debug option
de3a252c	33
	34	1.010 2009-05-14
	35	- Moved tests out to t/lib/ (dhoss)
	36
8f5d966b	37	- Add debug when a user is found, but passwords don't match (abraxxa)
8f5d966b	38
afe44be8	39	1.009 2009-01-04
8f5d966b	40	- Remove use of _config accessor, which I'd stupidly cargo-culted.
8f5d966b	41	As we don't ever run in auth back-compat mode, we can store
afe44be8	42	everything in instance data without worrying about conflicts.
	43	Note however - have to keep the accessor itself so that our
	44	parent class (which is still stupid and uses it) continues to work.
	45
b5402c9e	46	1.008 2008-12-10
8f5d966b	47	- Fix issue with the user not being authenticated into the correct
b5402c9e	48	realm, by not calling $c->set_authenticated ourselves, but instead
	49	just returning the user object. Fix suggested by Bernhard Graf. (t0m)
	50	- Add test for this (t0m)
	51	- Change $user to $user_obj in authenticate_digest for consistency (t0m)
	52
2dad9ca6	53	1.007 2008-11-19
	54	- Add test for query strings in digest auth as digest header is built using
	55	the full URI (t0m)
	56	- Fix for this (Peter Corlett)
	57	- Fix warning when used with self_check => 1 (t0m)
	58	- Added respository info to META.yml (t0m)
e8cb49b7	59
a50635bf	60	1.006 2008-10-06
	61	- Added username_field configuration option. I need this to play
	62	nice with Catalyst::Authentication::Store::Tangram.
2101d025	63	- Doc cleanups / clarifications related to RT#39838
a50635bf	64
6cd8c8c7	65	1.005 2008-09-25
ea92acf7	66	- Added better description of the use of the domains and
ea92acf7	67	use_uri_for options (info culled from RFC2617).
6cd8c8c7	68	- Split init method out to make this module easier to sub-class
6cd8c8c7	69	(used by Catalyst::Authentication::HTTP::Proxy).
ea92acf7	70
c5a1fa88	71	1.004 2008-09-12
	72	- Add tests for use_uri_for configuration options.
	73	- Add tests and documentation for storing an MD5
	74	of "$user:$relam:$password" instead of cleartext password
	75	when doing digest auth.
	76
f1f73b53	77	1.003 2008-09-11
bf399285	78	- Add ability to override the realm name presented for authentication
05512a69	79	when calling $c->authenticate. Documentation and tests for this.
bf399285	80	- Clean up documentation of options inherited from
05512a69	81	Catalyst::Authentication::Credential::Password.
031f556c	82	- Added an example of calling methods in the credential module from a
031f556c	83	controller to the POD.
05512a69	84	- Tests for the authorization_required_message configuration parameter.
05512a69	85	- Document use_uri_for configuration option
f1f73b53	86	- Document domain option (passed through from $c->authenticate) and add
f1f73b53	87	tests for this option.
bf399285	88
490754a8	89	1.002 2008-09-03
	90	- Fix the assumptions that the password field is named password when doing
	91	digest auth.
	92
	93	1.001 2008-09-02
	94	- Fix some of the assumptions about the user class by inheriting from the
	95	Catalyst::Authentication::Credential::Password module. This should make
	96	using DBIC as a store work correctly for basic auth.
	97	- Updated synopsis and todo list, this module still needs some work before
	98	it's ready for prime time again..
	99
	100	1.000 2008-09-01
513d8ab6	101	- Rename to remove Plugin from namespace. This is a pretty breaking change,
	102	as lots of things work differently with the new auth refactor.
	103	- Pull out some functionality which I think is better in other
	104	modules (realms/stores). With the auth refactor, this module didn't need
	105	to do so much. If anyone misses any of the functionality, please yell at
	106	me and I'll put it back.
	107
	108	0.11 2008-07-12
5b51e987	109	- Changed cache modules used in the tests to not be deprecated.
6afc3665	110	- Fix RT#31036, and comply with RFC2617 Section 1.2.
5b51e987	111
826670f9	112	0.10 2007-04-26
	113	- switch to Module::Install
	114
	115	0.09 2006-12-31
	116	- clean up tests
	117	- clean up docs
	118	- add body to 401 status
	119
	120	0.08 2006-10-12
2d4d6aac	121	- Fix basic test when using Test::MockObject 1.07 (die if using undefined
2d4d6aac	122	interfaces)
4e8cbd42	123
826670f9	124	0.07 2006-09-12
e9684b75	125	- Applied Ton Voon's patch that fixed option propagation for basic auth.
e9684b75	126
826670f9	127	0.06 2006-09-07
e9684b75	128	- Refactored internals into smaller methods