openhab-core/bundles/org.openhab.core.io.rest.auth
Yannick Schaus e26c49b9bf
Allow basic authentication to authorize API access (#1713)
* Allow basic authentication to authorize API access

Closes #1699.

Note, this opens a minor security issue that allows an attacker
to brute force passwords by making calls to the API - contrary to
the authorization page, the credentials parsing for the REST API
is stateless & doesn't have a lock mechanism to lock user accounts
after too many failed login attempts.

Signed-off-by: Yannick Schaus <github@schaus.net>
2020-10-18 20:59:51 +02:00
..
src/main Allow basic authentication to authorize API access (#1713) 2020-10-18 20:59:51 +02:00
.classpath Migrate to JAX-RS Whiteboard (#1443) 2020-05-14 22:32:35 +02:00
.project mavenize openHAB and integrate mavenized ESH repository (#467) 2019-01-28 13:07:31 +01:00
NOTICE Updated NOTICE files to openHAB (#578) 2019-02-15 10:46:18 +01:00
pom.xml Implementation of a JWT-based OAuth2 flow for the admin API (#1389) 2020-03-23 22:36:11 +01:00