Permalink
Browse files

Access Control: login is a POST request (#293).

Login via REST API now uses Basic Authentication.

To login:
{{{
    POST /accesscontrol/login
}}}
Put username and passwort in the "Authorization" header, according to Basic Authentication:
The string "Basic " appended by the Base64 encoded form of "{username}:{password}".

Note: no RequestFilter rule exception is required. The POST request is autorized on-the-fly via Basic Authentication.
(Basic Authentication allows to send the "Authorization" header along with the initial request, not forcing a 401).

Further changes in Webclient:
The RESTClient's public request() method takes a "headers" object (replacing the "content_type" parameter).
A plugin can pass arbitrary request headers.
{{{
    this.request = function(method, uri, data, headers)
}}}

See ticket 293.
  • Loading branch information...
1 parent 6b5c799 commit 6870789a4a1353d214dd2307d53d22170e72f2c4 @jri committed Aug 29, 2012
Oops, something went wrong.

0 comments on commit 6870789

Please sign in to comment.