1 - Add require_ssl configuration setting.
2 - Add no_unprompted_authorization_required configuration setting.
5 - Call store_digest_authorization_nonce() instead of $c->cache->set()
6 in authenticate_digest() (RT#63669) (rjk)
7 - Make Test::Exception and Test::MockObject be listed as test_requires
8 rather than requires (RT#54029)
9 - Skip WWW::Mech tests unless WWW::Mech is a new enough version (RT#55303).
10 - Improve documentation for authenticate_digest() (rjk)
11 - depends on Catalyst::Plugin::Cache, not Catalyst::Plugin::Session
12 - reorganize and clarify
15 - Move actions out of the test applications to stop warnings.
17 - Make Pod tests author only.
20 - Added true/false check to _debug option
23 - Moved tests out to t/lib/ (dhoss)
25 - Add debug when a user is found, but passwords don't match (abraxxa)
28 - Remove use of _config accessor, which I'd stupidly cargo-culted.
29 As we don't ever run in auth back-compat mode, we can store
30 everything in instance data without worrying about conflicts.
31 Note however - have to keep the accessor itself so that our
32 parent class (which is still stupid and uses it) continues to work.
35 - Fix issue with the user not being authenticated into the correct
36 realm, by not calling $c->set_authenticated ourselves, but instead
37 just returning the user object. Fix suggested by Bernhard Graf. (t0m)
38 - Add test for this (t0m)
39 - Change $user to $user_obj in authenticate_digest for consistency (t0m)
42 - Add test for query strings in digest auth as digest header is built using
44 - Fix for this (Peter Corlett)
45 - Fix warning when used with self_check => 1 (t0m)
46 - Added respository info to META.yml (t0m)
49 - Added username_field configuration option. I need this to play
50 nice with Catalyst::Authentication::Store::Tangram.
51 - Doc cleanups / clarifications related to RT#39838
54 - Added better description of the use of the domains and
55 use_uri_for options (info culled from RFC2617).
56 - Split init method out to make this module easier to sub-class
57 (used by Catalyst::Authentication::HTTP::Proxy).
60 - Add tests for use_uri_for configuration options.
61 - Add tests and documentation for storing an MD5
62 of "$user:$relam:$password" instead of cleartext password
63 when doing digest auth.
66 - Add ability to override the realm name presented for authentication
67 when calling $c->authenticate. Documentation and tests for this.
68 - Clean up documentation of options inherited from
69 Catalyst::Authentication::Credential::Password.
70 - Added an example of calling methods in the credential module from a
71 controller to the POD.
72 - Tests for the authorization_required_message configuration parameter.
73 - Document use_uri_for configuration option
74 - Document domain option (passed through from $c->authenticate) and add
75 tests for this option.
78 - Fix the assumptions that the password field is named password when doing
82 - Fix some of the assumptions about the user class by inheriting from the
83 Catalyst::Authentication::Credential::Password module. This should make
84 using DBIC as a store work correctly for basic auth.
85 - Updated synopsis and todo list, this module still needs some work before
86 it's ready for prime time again..
89 - Rename to remove Plugin from namespace. This is a pretty breaking change,
90 as lots of things work differently with the new auth refactor.
91 - Pull out some functionality which I think is better in other
92 modules (realms/stores). With the auth refactor, this module didn't need
93 to do so much. If anyone misses any of the functionality, please yell at
94 me and I'll put it back.
97 - Changed cache modules used in the tests to not be deprecated.
98 - Fix RT#31036, and comply with RFC2617 Section 1.2.
101 - switch to Module::Install
106 - add body to 401 status
109 - Fix basic test when using Test::MockObject 1.07 (die if using undefined
113 - Applied Ton Voon's patch that fixed option propagation for basic auth.
116 - Refactored internals into smaller methods