FTL/test/api at a96c283c0cc19ccce2504cff11e79bbfe2c603f3 - FTL - Gitea: Git with a cup of tea

Pi-Hole/FTL

mirror of https://github.com/pi-hole/FTL.git synced 2025-12-20 04:18:25 +00:00

Files

History

DL6ER a96c283c0c Add authentication via query string

Signed-off-by: DL6ER <dl6er@dl6er.de>

2023-11-03 19:41:08 +01:00

..

!!! BREAKING CHANGE !!! Switch to the proven memory-hard password-hashing alogorithm BALLOON. The stored password hash will be upgraded on the first successdful login. To wave the necessity to implement BALLOON with every client trying to access the API, we remove the existing challenge-response authentication in favor of allowing login straight with the password. This has been avoided in the past, however, seems now acceptable that FTL (even by default) offers secure end-to-end encryption over HTTPS.

2023-05-30 21:22:45 +02:00

Add authentication via query string

2023-11-03 19:41:08 +01:00

checkAPI.py

Update test/api/checkAPI.py

2023-11-03 06:47:32 +01:00

openapi-enforcer.js

Also allow authentication by sending SID via HEADER

2021-02-03 09:08:23 +01:00

test-rate-limit.py

Add rate-limiting on password login attempts

2023-10-07 19:59:32 +02:00