Skip to content
体验新版
项目
组织
正在加载...
登录
切换导航
打开侧边栏
张重言
rails
提交
86d8f922
R
rails
项目概览
张重言
/
rails
通知
1
Star
0
Fork
0
代码
文件
提交
分支
Tags
贡献者
分支图
Diff
Issue
0
列表
看板
标记
里程碑
合并请求
0
Wiki
0
Wiki
分析
仓库
DevOps
项目成员
Pages
R
rails
项目概览
项目概览
详情
发布
仓库
仓库
文件
提交
分支
标签
贡献者
分支图
比较
Issue
0
Issue
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
Pages
分析
分析
仓库分析
DevOps
Wiki
0
Wiki
成员
成员
收起侧边栏
关闭侧边栏
动态
分支图
创建新Issue
提交
Issue看板
前往新版Gitcode,体验更适合开发者的 AI 搜索 >>
提交
86d8f922
编写于
2月 16, 2009
作者:
D
Donald Parish
提交者:
Pratik Naik
2月 16, 2009
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
Fixed http digest authentication to use credentials URI passed from client. [#1848 state:resolved]
Signed-off-by:
N
Pratik Naik
<
pratiknaik@gmail.com
>
上级
238a6bb6
变更
2
隐藏空白更改
内联
并排
Showing
2 changed file
with
11 addition
and
2 deletion
+11
-2
actionpack/lib/action_controller/http_authentication.rb
actionpack/lib/action_controller/http_authentication.rb
+1
-1
actionpack/test/controller/http_digest_authentication_test.rb
...onpack/test/controller/http_digest_authentication_test.rb
+10
-1
未找到文件。
actionpack/lib/action_controller/http_authentication.rb
浏览文件 @
86d8f922
...
...
@@ -183,7 +183,7 @@ def validate_digest_response(request, realm, &password_procedure)
if
valid_nonce
&&
realm
==
credentials
[
:realm
]
&&
opaque
(
request
.
session
.
session_id
)
==
credentials
[
:opaque
]
password
=
password_procedure
.
call
(
credentials
[
:username
])
expected
=
expected_response
(
request
.
env
[
'REQUEST_METHOD'
],
request
.
url
,
credentials
,
password
)
expected
=
expected_response
(
request
.
env
[
'REQUEST_METHOD'
],
credentials
[
:uri
]
,
credentials
,
password
)
expected
==
credentials
[
:response
]
end
end
...
...
actionpack/test/controller/http_digest_authentication_test.rb
浏览文件 @
86d8f922
...
...
@@ -107,6 +107,15 @@ def authenticate_with_request
assert_equal
'Definitely Maybe'
,
@response
.
body
end
test
"authentication request with relative URI"
do
@request
.
env
[
'HTTP_AUTHORIZATION'
]
=
encode_credentials
(
:uri
=>
"/"
,
:username
=>
'pretty'
,
:password
=>
'please'
)
get
:display
assert_response
:success
assert
assigns
(
:logged_in
)
assert_equal
'Definitely Maybe'
,
@response
.
body
end
private
def
encode_credentials
(
options
)
...
...
@@ -120,7 +129,7 @@ def encode_credentials(options)
credentials
=
decode_credentials
(
@response
.
headers
[
'WWW-Authenticate'
])
credentials
.
merge!
(
options
)
credentials
.
merge!
(
:uri
=>
"http://
#{
@request
.
host
}#{
@request
.
env
[
'REQUEST_URI'
]
}
"
)
credentials
.
reverse_
merge!
(
:uri
=>
"http://
#{
@request
.
host
}#{
@request
.
env
[
'REQUEST_URI'
]
}
"
)
ActionController
::
HttpAuthentication
::
Digest
.
encode_credentials
(
"GET"
,
credentials
,
password
)
end
...
...
编辑
预览
Markdown
is supported
0%
请重试
或
添加新附件
.
添加附件
取消
You are about to add
0
people
to the discussion. Proceed with caution.
先完成此消息的编辑!
取消
想要评论请
注册
或
登录