egroupware/phpgwapi/inc/class.egw_digest_auth.inc.php

<?php
/**
 * EGroupware API: Basic and Digest Auth
 *
 * For Apache FCGI you need the following rewrite rule:
 *
 * 	RewriteEngine on
 * 	RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization},L]
 *
 * Otherwise authentication request will be send over and over again, as password is NOT available to PHP!
 * (This makes authentication details available in PHP as $_SERVER['REDIRECT_HTTP_AUTHORIZATION']
 *
 * @link http://www.egroupware.org
 * @license http://opensource.org/licenses/gpl-license.php GPL - GNU General Public License
 * @package api
 * @subpackage auth
 * @author Ralf Becker <RalfBecker-AT-outdoor-training.de>
 * @copyright (c) 2010-16 by Ralf Becker <RalfBecker-AT-outdoor-training.de>
 * @version $Id$
 */

use EGroupware\Api\Header\Authenticate;

/**
 * Class to authenticate via basic or digest auth
 *
 * @deprecated use EGroupware\Api\Header\Authenticate
 */
class egw_digest_auth extends Authenticate {}
supporting digest auth (see RFC 2617), which is more secure then basic auth on http (no cleartext password), it currently requires cleartext passwords in the database, to calculate the A1 hash! 2010-05-05 11:19:37 +02:00			`<?php`
			`/**`
moving egw_digest_auth, vfs_webdav_server and egw_sharing to new api 2016-03-20 17:19:53 +01:00			`* EGroupware API: Basic and Digest Auth`
supporting digest auth (see RFC 2617), which is more secure then basic auth on http (no cleartext password), it currently requires cleartext passwords in the database, to calculate the A1 hash! 2010-05-05 11:19:37 +02:00			`*`
documented required rewrite rule for Apache FCGI 2013-03-18 09:14:47 +01:00			`* For Apache FCGI you need the following rewrite rule:`
			`*`
			`* RewriteEngine on`
			`* RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization},L]`
			`*`
			`* Otherwise authentication request will be send over and over again, as password is NOT available to PHP!`
* WebDAV/CalDAV/CardDAV: fixed basic authentication via redirect-rule to use $_SERVER["REDIRECT_HTTP_AUTHORIZATION"] as it is used by newer Apache versions 2013-07-15 13:06:45 +02:00			`* (This makes authentication details available in PHP as $_SERVER['REDIRECT_HTTP_AUTHORIZATION']`
documented required rewrite rule for Apache FCGI 2013-03-18 09:14:47 +01:00			`*`
supporting digest auth (see RFC 2617), which is more secure then basic auth on http (no cleartext password), it currently requires cleartext passwords in the database, to calculate the A1 hash! 2010-05-05 11:19:37 +02:00			`* @link http://www.egroupware.org`
			`* @license http://opensource.org/licenses/gpl-license.php GPL - GNU General Public License`
			`* @package api`
			`* @subpackage auth`
			`* @author Ralf Becker <RalfBecker-AT-outdoor-training.de>`
moving egw_digest_auth, vfs_webdav_server and egw_sharing to new api 2016-03-20 17:19:53 +01:00			`* @copyright (c) 2010-16 by Ralf Becker <RalfBecker-AT-outdoor-training.de>`
supporting digest auth (see RFC 2617), which is more secure then basic auth on http (no cleartext password), it currently requires cleartext passwords in the database, to calculate the A1 hash! 2010-05-05 11:19:37 +02:00			`* @version $Id$`
			`*/`

moving egw_digest_auth, vfs_webdav_server and egw_sharing to new api 2016-03-20 17:19:53 +01:00			`use EGroupware\Api\Header\Authenticate;`

supporting digest auth (see RFC 2617), which is more secure then basic auth on http (no cleartext password), it currently requires cleartext passwords in the database, to calculate the A1 hash! 2010-05-05 11:19:37 +02:00			`/**`
			`* Class to authenticate via basic or digest auth`
			`*`
moving egw_digest_auth, vfs_webdav_server and egw_sharing to new api 2016-03-20 17:19:53 +01:00			`* @deprecated use EGroupware\Api\Header\Authenticate`
supporting digest auth (see RFC 2617), which is more secure then basic auth on http (no cleartext password), it currently requires cleartext passwords in the database, to calculate the A1 hash! 2010-05-05 11:19:37 +02:00			`*/`
moving egw_digest_auth, vfs_webdav_server and egw_sharing to new api 2016-03-20 17:19:53 +01:00			`class egw_digest_auth extends Authenticate {}`