owncast/test/automated
Alyssa Ross 092134f3f3
Fix parsing of Authorization Bearer header (#3376)
The semantics of the Authorization header are defined by RFC 9110, which says:

> It uses a case-insensitive token to identify the authentication scheme:

Therefore, "bearer", "Bearer", and "bEARER" are equivalent.  This patch fixes
the parsing of the Authorization header to check for the Bearer authentication
scheme case insensitively.

I've modified one of the test cases to use lowercase "bearer", so there's test
coverage for this.
2023-10-21 10:00:50 -07:00
..
api Fix parsing of Authorization Bearer header (#3376) 2023-10-21 10:00:50 -07:00
browser
hls
screenshots
upgrades
.gitignore
tools.sh