git.ipfire.org Git - thirdparty/git.git/commit - Documentation/git-credential.txt

author	Matthew John Cheetham <mjcheetham@outlook.com>
	Mon, 27 Feb 2023 17:20:20 +0000 (17:20 +0000)
committer	Junio C Hamano <gitster@pobox.com>
	Mon, 27 Feb 2023 18:40:40 +0000 (10:40 -0800)
commit	5f2117b24f568ecc789c677748d70ccd538b16ba
tree	46d33f1ad5a426299b6274f4e258428913592be5	tree \| snapshot
parent	6b8dda9a4fdec1638b047506a121df8e15872492	commit \| diff

credential: add WWW-Authenticate header to cred requests

Add the value of the WWW-Authenticate response header to credential
requests. Credential helpers that understand and support HTTP
authentication and authorization can use this standard header (RFC 2616
Section 14.47 [1]) to generate valid credentials.

WWW-Authenticate headers can contain information pertaining to the
authority, authentication mechanism, or extra parameters/scopes that are
required.

The current I/O format for credential helpers only allows for unique
names for properties/attributes, so in order to transmit multiple header
values (with a specific order) we introduce a new convention whereby a
C-style array syntax is used in the property name to denote multiple
ordered values for the same property.

In this case we send multiple `wwwauth[]` properties where the order
that the repeated attributes appear in the conversation reflects the
order that the WWW-Authenticate headers appeared in the HTTP response.

Add a set of tests to exercise the HTTP authentication header parsing
and the interop with credential helpers. Credential helpers will receive
WWW-Authenticate information in credential requests.

[1] https://datatracker.ietf.org/doc/html/rfc2616#section-14.47

Signed-off-by: Matthew John Cheetham <mjcheetham@outlook.com>
Signed-off-by: Junio C Hamano <gitster@pobox.com>

Documentation/git-credential.txt		diff \| blob \| blame \| history
credential.c		diff \| blob \| blame \| history
t/t5563-simple-http-auth.sh		diff \| blob \| blame \| history