Mercurial > kallithea
diff LICENSE-MERGELY.html @ 6384:9cf90371d0f1
auth: add support for "Bearer" auth scheme (API key variant)
This allows the API key to be passed in a header instead of the query
string, reducing the risk of accidental API key leaks:
Authorization: Bearer <api key>
The Bearer authorization scheme is standardized in RFC 6750, though
used here outside the full OAuth 2.0 authorization framework. (Full
OAuth can still be added later without breaking existing users.)
author | Søren Løvborg <sorenl@unity3d.com> |
---|---|
date | Mon, 02 Jan 2017 18:51:37 +0100 |
parents | aa3b55946089 |
children |