discourse/spec/components/auth
Blake Erickson f03b293e6a
FEATURE: Header based auth for API requests (#7129)
Now you can also make authenticated API requests by passing the
`api_key` and `api_username` in the HTTP header instead of query params.

The new header values are: `Api-key` and `Api-Username`.

Here is an example in cURL:

``` text
curl -i -sS -X POST "http://127.0.0.1:3000/categories" \
  -H "Content-Type: multipart/form-data;" \
  -H "Api-Key: 7aa202bec1ff70563bc0a3d102feac0a7dd2af96b5b772a9feaf27485f9d31a2" \
  -H "Api-Username: system" \
  -F "name=7c1c0ed93583cba7124b745d1bd56b32" \
  -F "color=49d9e9" \
  -F "text_color=f0fcfd"
```

There is also support for `Api-User-Id` and `Api-User-External-Id`
instead of specifying the username along with the key.
2019-03-08 09:13:31 -07:00
..
default_current_user_provider_spec.rb FEATURE: Header based auth for API requests (#7129) 2019-03-08 09:13:31 -07:00
facebook_authenticator_spec.rb REFACTOR: Migrate FacebookAuthenticator to use ManagedAuthenticator 2018-11-30 11:18:11 +00:00
github_authenticator_spec.rb FIX: support connecting GitHub with existing accounts 2018-12-10 09:27:00 +11:00
google_oauth2_authenticator_spec.rb REFACTOR: Migrate GoogleOAuth2Authenticator to use ManagedAuthenticator (#7120) 2019-03-07 11:31:04 +00:00
instagram_authenticator_spec.rb REFACTOR: Migrate InstagramAuthenticator to use ManagedAuthenticator (#7081) 2019-03-04 14:54:28 +01:00
managed_authenticator_spec.rb FIX: ManagedAuthenticator should automatically update last_used time 2019-02-27 15:29:26 +00:00
open_id_authenticator_spec.rb DEV: Remove autospec hacks for social auth providers 2018-10-09 12:42:57 +01:00
twitter_authenticator_spec.rb REFACTOR: Migrate TwitterAuthenticator to use ManagedAuthenticator (#6739) 2018-12-07 15:39:06 +00:00