-
Notifications
You must be signed in to change notification settings - Fork 36.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
rpc: Add WWW-Authenticate header to 401 response #7472
Merged
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
1e493fc
to
5bac0a9
Compare
👍 fixes Java's Authenticator as I reported in #7462 |
@@ -21,6 +21,9 @@ | |||
#include <boost/algorithm/string.hpp> // boost::trim | |||
#include <boost/foreach.hpp> //BOOST_FOREACH | |||
|
|||
/** WWW-Authenticate to present with 401 Unauthorized response */ | |||
static const char *WWW_AUTH_HEADER_DATA = "Basic realm=\"jsonrpc\""; |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Nit:
diff --git a/src/httprpc.cpp b/src/httprpc.cpp
index 5d54d8f..a447a3e 100644
--- a/src/httprpc.cpp
+++ b/src/httprpc.cpp
@@ -25 +25 @@
-static const char *WWW_AUTH_HEADER_DATA = "Basic realm=\"jsonrpc\"";
+static const char* WWW_AUTH_HEADER_DATA = "Basic realm=\"jsonrpc\"";
@@ -157 +157 @@ static bool HTTPReq_JSONRPC(HTTPRequest* req, const std::string &)
- req->WriteHeader("WWW-Authenticate",WWW_AUTH_HEADER_DATA);
+ req->WriteHeader("WWW-Authenticate", WWW_AUTH_HEADER_DATA);
@@ -170 +170 @@ static bool HTTPReq_JSONRPC(HTTPRequest* req, const std::string &)
- req->WriteHeader("WWW-Authenticate",WWW_AUTH_HEADER_DATA);
+ req->WriteHeader("WWW-Authenticate", WWW_AUTH_HEADER_DATA);
Concept ACK 5bac0a9 |
A WWW-Authenticate header must be present in the 401 response to make clients know that they can authenticate, and how. WWW-Authenticate: Basic realm="jsonrpc" Fixes bitcoin#7462.
5bac0a9
to
7c06fbd
Compare
ACK laanwj@7c06fbd |
laanwj
added a commit
that referenced
this pull request
Feb 9, 2016
7c06fbd rpc: Add WWW-Authenticate header to 401 response (Wladimir J. van der Laan)
Cherry-picked to 0.12 as b2f2b85 |
This was referenced Jul 12, 2017
zkbot
added a commit
to zcash/zcash
that referenced
this pull request
Jul 25, 2017
[rpc] Add WWW-Authenticate header to 401 response Fix cherry-picked from upstream PR bitcoin/bitcoin#7472. Closes #2444.
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
A WWW-Authenticate header must be present in the 401 response to make clients know that they can authenticate, and how.
Should fix #7462.