git.immae.eu Git - github/shaarli/Shaarli.git/commit - application/api/ApiMiddleware.php

]> git.immae.eu Git - github/shaarli/Shaarli.git/commit - application/api/ApiMiddleware.php

projects / github / shaarli / Shaarli.git / commit

author	VirtualTam <virtualtam@flibidi.net>
	Sat, 7 Jan 2017 21:23:47 +0000 (22:23 +0100)
committer	VirtualTam <virtualtam+github@flibidi.net>
	Sun, 15 Jan 2017 12:41:04 +0000 (13:41 +0100)
commit	63ef549749fac9d0e302842f06e7794d1daabc13
tree	0ff9dc942d61ca50a251a900f1b923ac8ff39cda	tree \| snapshot
parent	37ab940599d40472c5b4a3bbe5a10515046c64ee	commit \| diff

API: expect JWT in the Authorization header

Relates to https://github.com/shaarli/Shaarli/pull/731

Added:
- require the presence of the 'Authorization' header

Changed:
- use the HTTP Bearer Token authorization schema

See:
- https://jwt.io/introduction/#how-do-json-web-tokens-work-
- https://tools.ietf.org/html/rfc6750
- http://security.stackexchange.com/q/108662

Signed-off-by: VirtualTam <virtualtam@flibidi.net>

application/api/ApiMiddleware.php		diff \| blob \| blame \| history
tests/api/ApiMiddlewareTest.php		diff \| blob \| blame \| history

The personal, minimalist, super-fast, database free, bookmarking service - community repo

RSS Atom