2 - Add broken_dotnet_digest_without_query_string option
4 Allows digest authentication from .NET, which does not include the
5 query string in the uri in the digest Authorization header.
7 - Fix broken synopsis. RT#75254
10 - Add require_ssl configuration setting.
11 - Add no_unprompted_authorization_required configuration setting.
14 - Call store_digest_authorization_nonce() instead of $c->cache->set()
15 in authenticate_digest() (RT#63669) (rjk)
16 - Make Test::Exception and Test::MockObject be listed as test_requires
17 rather than requires (RT#54029)
18 - Skip WWW::Mech tests unless WWW::Mech is a new enough version (RT#55303).
19 - Improve documentation for authenticate_digest() (rjk)
20 - depends on Catalyst::Plugin::Cache, not Catalyst::Plugin::Session
21 - reorganize and clarify
24 - Move actions out of the test applications to stop warnings.
26 - Make Pod tests author only.
29 - Added true/false check to _debug option
32 - Moved tests out to t/lib/ (dhoss)
34 - Add debug when a user is found, but passwords don't match (abraxxa)
37 - Remove use of _config accessor, which I'd stupidly cargo-culted.
38 As we don't ever run in auth back-compat mode, we can store
39 everything in instance data without worrying about conflicts.
40 Note however - have to keep the accessor itself so that our
41 parent class (which is still stupid and uses it) continues to work.
44 - Fix issue with the user not being authenticated into the correct
45 realm, by not calling $c->set_authenticated ourselves, but instead
46 just returning the user object. Fix suggested by Bernhard Graf. (t0m)
47 - Add test for this (t0m)
48 - Change $user to $user_obj in authenticate_digest for consistency (t0m)
51 - Add test for query strings in digest auth as digest header is built using
53 - Fix for this (Peter Corlett)
54 - Fix warning when used with self_check => 1 (t0m)
55 - Added respository info to META.yml (t0m)
58 - Added username_field configuration option. I need this to play
59 nice with Catalyst::Authentication::Store::Tangram.
60 - Doc cleanups / clarifications related to RT#39838
63 - Added better description of the use of the domains and
64 use_uri_for options (info culled from RFC2617).
65 - Split init method out to make this module easier to sub-class
66 (used by Catalyst::Authentication::HTTP::Proxy).
69 - Add tests for use_uri_for configuration options.
70 - Add tests and documentation for storing an MD5
71 of "$user:$relam:$password" instead of cleartext password
72 when doing digest auth.
75 - Add ability to override the realm name presented for authentication
76 when calling $c->authenticate. Documentation and tests for this.
77 - Clean up documentation of options inherited from
78 Catalyst::Authentication::Credential::Password.
79 - Added an example of calling methods in the credential module from a
80 controller to the POD.
81 - Tests for the authorization_required_message configuration parameter.
82 - Document use_uri_for configuration option
83 - Document domain option (passed through from $c->authenticate) and add
84 tests for this option.
87 - Fix the assumptions that the password field is named password when doing
91 - Fix some of the assumptions about the user class by inheriting from the
92 Catalyst::Authentication::Credential::Password module. This should make
93 using DBIC as a store work correctly for basic auth.
94 - Updated synopsis and todo list, this module still needs some work before
95 it's ready for prime time again..
98 - Rename to remove Plugin from namespace. This is a pretty breaking change,
99 as lots of things work differently with the new auth refactor.
100 - Pull out some functionality which I think is better in other
101 modules (realms/stores). With the auth refactor, this module didn't need
102 to do so much. If anyone misses any of the functionality, please yell at
103 me and I'll put it back.
106 - Changed cache modules used in the tests to not be deprecated.
107 - Fix RT#31036, and comply with RFC2617 Section 1.2.
110 - switch to Module::Install
115 - add body to 401 status
118 - Fix basic test when using Test::MockObject 1.07 (die if using undefined
122 - Applied Ton Voon's patch that fixed option propagation for basic auth.
125 - Refactored internals into smaller methods