2 - Fix repository metadata. RT#87114
5 - Add broken_dotnet_digest_without_query_string option
7 Allows digest authentication from .NET, which does not include the
8 query string in the uri in the digest Authorization header.
10 - Fix broken synopsis. RT#75254
13 - Add require_ssl configuration setting.
14 - Add no_unprompted_authorization_required configuration setting.
17 - Call store_digest_authorization_nonce() instead of $c->cache->set()
18 in authenticate_digest() (RT#63669) (rjk)
19 - Make Test::Exception and Test::MockObject be listed as test_requires
20 rather than requires (RT#54029)
21 - Skip WWW::Mech tests unless WWW::Mech is a new enough version (RT#55303).
22 - Improve documentation for authenticate_digest() (rjk)
23 - depends on Catalyst::Plugin::Cache, not Catalyst::Plugin::Session
24 - reorganize and clarify
27 - Move actions out of the test applications to stop warnings.
29 - Make Pod tests author only.
32 - Added true/false check to _debug option
35 - Moved tests out to t/lib/ (dhoss)
37 - Add debug when a user is found, but passwords don't match (abraxxa)
40 - Remove use of _config accessor, which I'd stupidly cargo-culted.
41 As we don't ever run in auth back-compat mode, we can store
42 everything in instance data without worrying about conflicts.
43 Note however - have to keep the accessor itself so that our
44 parent class (which is still stupid and uses it) continues to work.
47 - Fix issue with the user not being authenticated into the correct
48 realm, by not calling $c->set_authenticated ourselves, but instead
49 just returning the user object. Fix suggested by Bernhard Graf. (t0m)
50 - Add test for this (t0m)
51 - Change $user to $user_obj in authenticate_digest for consistency (t0m)
54 - Add test for query strings in digest auth as digest header is built using
56 - Fix for this (Peter Corlett)
57 - Fix warning when used with self_check => 1 (t0m)
58 - Added respository info to META.yml (t0m)
61 - Added username_field configuration option. I need this to play
62 nice with Catalyst::Authentication::Store::Tangram.
63 - Doc cleanups / clarifications related to RT#39838
66 - Added better description of the use of the domains and
67 use_uri_for options (info culled from RFC2617).
68 - Split init method out to make this module easier to sub-class
69 (used by Catalyst::Authentication::HTTP::Proxy).
72 - Add tests for use_uri_for configuration options.
73 - Add tests and documentation for storing an MD5
74 of "$user:$relam:$password" instead of cleartext password
75 when doing digest auth.
78 - Add ability to override the realm name presented for authentication
79 when calling $c->authenticate. Documentation and tests for this.
80 - Clean up documentation of options inherited from
81 Catalyst::Authentication::Credential::Password.
82 - Added an example of calling methods in the credential module from a
83 controller to the POD.
84 - Tests for the authorization_required_message configuration parameter.
85 - Document use_uri_for configuration option
86 - Document domain option (passed through from $c->authenticate) and add
87 tests for this option.
90 - Fix the assumptions that the password field is named password when doing
94 - Fix some of the assumptions about the user class by inheriting from the
95 Catalyst::Authentication::Credential::Password module. This should make
96 using DBIC as a store work correctly for basic auth.
97 - Updated synopsis and todo list, this module still needs some work before
98 it's ready for prime time again..
101 - Rename to remove Plugin from namespace. This is a pretty breaking change,
102 as lots of things work differently with the new auth refactor.
103 - Pull out some functionality which I think is better in other
104 modules (realms/stores). With the auth refactor, this module didn't need
105 to do so much. If anyone misses any of the functionality, please yell at
106 me and I'll put it back.
109 - Changed cache modules used in the tests to not be deprecated.
110 - Fix RT#31036, and comply with RFC2617 Section 1.2.
113 - switch to Module::Install
118 - add body to 401 status
121 - Fix basic test when using Test::MockObject 1.07 (die if using undefined
125 - Applied Ton Voon's patch that fixed option propagation for basic auth.
128 - Refactored internals into smaller methods