[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[elpa] 58/119: note: shouldn't use BASIC authentication w/o HTTPS
From: |
Eric Schulte |
Subject: |
[elpa] 58/119: note: shouldn't use BASIC authentication w/o HTTPS |
Date: |
Mon, 10 Mar 2014 16:57:25 +0000 |
eschulte pushed a commit to branch master
in repository elpa.
commit 8be3e3f4a1f1c6970a51fff39f55832f8370484b
Author: Eric Schulte <address@hidden>
Date: Thu Jan 2 23:11:05 2014 -0700
note: shouldn't use BASIC authentication w/o HTTPS
---
doc/web-server.texi | 6 ++++++
1 files changed, 6 insertions(+), 0 deletions(-)
diff --git a/doc/web-server.texi b/doc/web-server.texi
index f74a63a..6821935 100644
--- a/doc/web-server.texi
+++ b/doc/web-server.texi
@@ -243,6 +243,12 @@ The client replies by setting the ``Authorization'' HTTP
header which
is parsed into a list of the form @code{(PROTOCOL USERNAME
. PASSWORD)}. Currently only BASIC HTTP authentication is supported.
address@hidden
+Note: BASIC HTTP authentication passes user credentials in plain text
+between the client and the server and should generally only be used
+with HTTPS network encryption. The Emacs web server currently doesn't
+support HTTPS network encryption.
+
@verbatiminclude ../examples/6-basic-authentication.el
@node Function Index, Copying, Usage Examples, Top
- [elpa] 48/119: update README, (continued)
- [elpa] 48/119: update README, Eric Schulte, 2014/03/10
- [elpa] 49/119: small updates to README and NOTES, Eric Schulte, 2014/03/10
- [elpa] 50/119: MAYBE incremental handler calls, Eric Schulte, 2014/03/10
- [elpa] 46/119: more documentation and examples, Eric Schulte, 2014/03/10
- [elpa] 51/119: renaming files, Eric Schulte, 2014/03/10
- [elpa] 53/119: added commentary, Eric Schulte, 2014/03/10
- [elpa] 55/119: update link in README, Eric Schulte, 2014/03/10
- [elpa] 54/119: doc tweaks, Eric Schulte, 2014/03/10
- [elpa] 45/119: new request object, Eric Schulte, 2014/03/10
- [elpa] 56/119: fix ports in examples, Eric Schulte, 2014/03/10
- [elpa] 58/119: note: shouldn't use BASIC authentication w/o HTTPS,
Eric Schulte <=
- [elpa] 59/119: notes about security & authentication options, Eric Schulte, 2014/03/10
- [elpa] 57/119: BASIC HTTP authentication, Eric Schulte, 2014/03/10
- [elpa] 61/119: fix deprecated file name in file example, Eric Schulte, 2014/03/10
- [elpa] 38/119: starting on documentation, Eric Schulte, 2014/03/10
- [elpa] 60/119: quick benchmarking, Eric Schulte, 2014/03/10
- [elpa] 52/119: changed prefix: ews -> ws, Eric Schulte, 2014/03/10
- [elpa] 63/119: autoload ws-start, Eric Schulte, 2014/03/10
- [elpa] 62/119: example serving Org-mode files exported on demand, Eric Schulte, 2014/03/10
- [elpa] 64/119: fix file header, Eric Schulte, 2014/03/10
- [elpa] 65/119: handle POST file uploads w/example, Eric Schulte, 2014/03/10