I'll keep that in mind. <br><br>As an aside, using this gem, how would I go about changing the user without closing the browser or raising «Unauthorized»? That last pops up a log-in window that can't authorize (have to press escape).<br>
<br><br><br><div class="gmail_quote">On Mon, Feb 25, 2008 at 6:22 AM, Manfred Stienstra <<a href="mailto:manfred@gmail.com">manfred@gmail.com</a>> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div class="Ih2E3d"><br>
On Feb 23, 2008, at 7:10 PM, Brendan Taylor wrote:<br>
<br>
> I've attached a module for doing digest auth with Camping. It uses the<br>
> httpauth gem.<br>
<br>
</div>You have to take care when using httpauth because it doesn't do any<br>
internal validation of the digest authorization request, so I think it<br>
might be vulnerable to replay attacks or something.<br>
<div><div></div><div class="Wj3C7c"><br>
Manfred<br>
_______________________________________________<br>
Camping-list mailing list<br>
<a href="mailto:Camping-list@rubyforge.org">Camping-list@rubyforge.org</a><br>
<a href="http://rubyforge.org/mailman/listinfo/camping-list" target="_blank">http://rubyforge.org/mailman/listinfo/camping-list</a><br>
</div></div></blockquote></div><br>