A hyperfast web frontend for git repositories written in C. http://git.cetero.st/cgit/atom/filters/simple-authentication.lua?h=v1.2 2015-03-05T14:51:22Z 2015-03-05T14:51:22Z Jason A. Donenfeld Jason@zx2c4.com 2015-03-05T14:45:25Z urn:sha1:ecd6b7230c88deb23f880ee1df75ae4b230cf9ec 2014-01-22T23:58:07Z Jason A. Donenfeld Jason@zx2c4.com 2014-01-22T23:58:07Z urn:sha1:aa6d5b105de9de6d01855c15217e46fd36890dbc Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2014-01-17T14:34:44Z Jason A. Donenfeld Jason@zx2c4.com 2014-01-17T14:34:44Z urn:sha1:9dde6d38e9fc273fc62386eeda0da2e89a2cebfc Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2014-01-16T22:21:54Z Jason A. Donenfeld Jason@zx2c4.com 2014-01-16T22:21:54Z urn:sha1:a431326e8fab8153905fbde036dd3c9fb4cc8eaa This way we're sure to use virtual root, or any other strangeness encountered. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2014-01-16T18:47:35Z Jason A. Donenfeld Jason@zx2c4.com 2014-01-16T18:47:35Z urn:sha1:df00ab1096868b3cffe563c48de5572f78b50392 By default, strings are compared by hash, so we can remove this comment. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2014-01-16T11:13:39Z Jason A. Donenfeld Jason@zx2c4.com 2014-01-16T10:39:17Z urn:sha1:b826537cb4aa2358027ffcb1dd6a87274734e962 This also gives us some CSRF protection. Note that we make use of the hmac to protect the redirect value. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> 2014-01-16T01:28:12Z Jason A. Donenfeld Jason@zx2c4.com 2014-01-14T20:49:31Z urn:sha1:d6e9200cc35411f3f27426b608bcfdef9348e6d3 This leverages the new lua support. See filters/simple-authentication.lua for explaination of how this works. There is also additional documentation in cgitrc.5.txt. Though this is a cookie-based approach, cgit's caching mechanism is preserved for authenticated pages. Very plugable and extendable depending on user needs. The sample script uses an HMAC-SHA1 based cookie to store the currently logged in user, with an expiration date. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>