diff options
| -rw-r--r-- | ChangeLog | 6 | ||||
| -rw-r--r-- | lib/webrick/httpauth/authenticator.rb | 2 |
2 files changed, 7 insertions, 1 deletions
@@ -1,3 +1,9 @@ +Wed Jul 4 23:36:27 2007 NAKAMURA, Hiroshi <nahi@ruby-lang.org> + + * lib/webrick/httpauth/authenticator.rb + (WEBrick::HTTPAuth::Authenticator#check_scheme): auth-scheme must be + treated as a case-insensitive token according to RFC 2617 section 1.2. + Wed Jul 4 18:30:04 2007 Tanaka Akira <akr@fsij.org> * parse.y (mlhs_inner): new rule. [ruby-dev:31132] diff --git a/lib/webrick/httpauth/authenticator.rb b/lib/webrick/httpauth/authenticator.rb index fe2dbf4e0c..f90d1bf75b 100644 --- a/lib/webrick/httpauth/authenticator.rb +++ b/lib/webrick/httpauth/authenticator.rb @@ -42,7 +42,7 @@ module WEBrick error("no credentials in the request.") return nil end - unless match = /^#{@auth_scheme}\s+/.match(credentials) + unless match = /^#{@auth_scheme}\s+/i.match(credentials) error("invalid scheme in %s.", credentials) info("%s: %s", @request_field, credentials) if $DEBUG return nil |