HTTP::DAVServer::AuthDigest - Allows for customized password lookups when using the Digest authorization mechanism.
This module is called as part of the DAV handler when it is a non-public server that does not have a REMOTE_USER set already. You can pass in a subreference which will be called to lookup the user's password.
For testing this is simply all users are valid and their password is their userid.
In order for this code to work it must get the "Authorization" header passed in via CGI. To do this you need to compile Apache with the ominous define "SECURITY_HOLE_PASS_AUTHORIZATION"
Like people haven't sniffed your basic authorization header before it got to the server already. At least with Digest this header is a bit less useful for the hostial sniffer.
This code is not done and is only a sketch.
For technical support please email to firstname.lastname@example.org ... for faster service please include "HTTP::DAVServer" and "help" in your subject line.
Jay J. Lawrence - email@example.com Infonium Inc., Canada http://www.infonium.ca/
Copyright (c) 2003 Jay J. Lawrence, Infonium Inc. All rights reserved. This program is free software; you can redistribute it and/or modify it under the same terms as Perl itself.
The full text of the license can be found in the LICENSE file included with this module.
Thank you to the authors of my prequisite modules. With out your help this code would be much more difficult to write!
XML::Simple - Grant McLean XML::SAX - Matt Sergeant DateTime - Dave Rolsky
Also the authors of litmus, a very helpful tool indeed!