Jay Lawrence > HTTP-DAVServer-0.2 > HTTP::DAVServer::AuthDigest

Download:
HTTP-DAVServer-0.2.tar.gz

Dependencies

Annotate this POD

View/Report Bugs
Module Version: 0.1   Source  

NAME ^

HTTP::DAVServer::AuthDigest - Allows for customized password lookups when using the Digest authorization mechanism.

DESCRIPTION ^

This module is called as part of the DAV handler when it is a non-public server that does not have a REMOTE_USER set already. You can pass in a subreference which will be called to lookup the user's password.

For testing this is simply all users are valid and their password is their userid.

In order for this code to work it must get the "Authorization" header passed in via CGI. To do this you need to compile Apache with the ominous define "SECURITY_HOLE_PASS_AUTHORIZATION"

 CFLAGS="-DSECURITY_HOLE_PASS_AUTHORIZATION" ./configure

Like people haven't sniffed your basic authorization header before it got to the server already. At least with Digest this header is a bit less useful for the hostial sniffer.

This code is not done and is only a sketch.

SUPPORT ^

For technical support please email to jlawrenc@cpan.org ... for faster service please include "HTTP::DAVServer" and "help" in your subject line.

AUTHOR ^

 Jay J. Lawrence - jlawrenc@cpan.org
 Infonium Inc., Canada
 http://www.infonium.ca/

COPYRIGHT ^

Copyright (c) 2003 Jay J. Lawrence, Infonium Inc. All rights reserved. This program is free software; you can redistribute it and/or modify it under the same terms as Perl itself.

The full text of the license can be found in the LICENSE file included with this module.

ACKNOWLEDGEMENTS ^

Thank you to the authors of my prequisite modules. With out your help this code would be much more difficult to write!

 XML::Simple - Grant McLean
 XML::SAX    - Matt Sergeant
 DateTime    - Dave Rolsky

Also the authors of litmus, a very helpful tool indeed!

SEE ALSO ^

HTTP::DAV, HTTP::Webdav, http://www.webdav.org/, RFC 2518

syntax highlighting: