Draft code for HTTP Digest authentication implementation #53

Open
pifleo opened this Issue Jan 3, 2013 · 1 comment

Comments

Projects
None yet
2 participants
Contributor

pifleo commented Jan 3, 2013

Hi,

I would like to allow opening files from Microsoft Word to authenticated users.
As Word and MS webdav clients forbidden access to server with HTTP Basic over simple HTTP (I will set SSL in production), I started to patch dav4rack for Digest authentication.

The code is available here: https://github.com/pifleo/dav4rack/compare/auth_digest and a wiki page here

It is very short and working in my apps as expected as dependencies are met.

I think it can't be integrated in the gem for the moment as it add some dependencies from actionpack:

  • action_controller/http_authentication
  • action_dispatch/request.

But If you have any advice or proposition to make it better we can try to integrate this feature.

Owner

chrisroberts commented Jan 4, 2013

@pifleo This is very cool! I would agree about the actionpack dependency as I have not been too excited to add any action* or active* dependencies into dav4rack. The approach looks good and the actionpack bits may be easily swapped out. Also, at the very least, these modifications could be optionally enabled via configuration options.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment