b3b05949bb
Implement most desirable Authorization method.
...
As per https://developer.atlassian.com/bitbucket/api/2/reference/meta/authentication#make-requests
adding the OAuth access token in the Authorization header is desired above adding it to the URL.
2017-01-22 14:35:37 +01:00
a4af559ca8
Store access-token for re-use
...
Store the Bitbucket access-token (and the expiration time) so it can be re-used within the time it is valid.
The Bitbucket::requestToken and Bitbucket::getToken now only return the access-token and not all other parameters it receives from the Bitbucket API.
2017-01-22 14:35:37 +01:00
d80d266201
Fix dist download from bitbucket.
...
URL https://bitbucket.org/ariya/phantomjs/downloads/phantomjs-2.1.1-linux-x86_64.tar.bz2
results in the following $pathParts:
array(5) {
[0]=>
string(0) ""
[1]=>
string(5) "ariya"
[2]=>
string(9) "phantomjs"
[3]=>
string(9) "downloads"
[4]=>
string(36) "phantomjs-2.1.1-linux-x86_64.tar.bz2"
}
A dist download URL is like:
https://bitbucket.org/user/repo/get/[git-hash].zip
array(5) {
[0]=>
string(0) ""
[1]=>
string(4) "user"
[2]=>
string(4) "repo"
[3]=>
string(3) "get"
[4]=>
string(14) "[git-hash].zip"
}
2016-12-24 21:10:12 +01:00
4d082f77b8
Simplify composer output to take less lines
2016-12-07 01:09:06 +01:00
c0e28a9043
Remove static/public method
2016-10-10 14:03:30 +02:00
489a8f3d5a
revert to simply making an exception (no acces_token) for bitbucket/user/repo/downloads URLs
...
[#5584 ]
2016-09-29 21:16:47 +02:00
5123c5cf76
remove redundant truth check
2016-09-29 10:55:14 +02:00
8845ea467a
try bitbucket downloads first time without auth
...
also add tests for #5584
2016-09-28 19:08:24 +02:00
64fc8ffe3d
prevent (prompt for) auth for bitbucket public downloads
...
#5584
2016-09-27 11:41:16 +02:00
a4e3e1b584
prevent (prompt for) bitbucket auth when it redirected
...
#5584
2016-09-26 19:47:10 +02:00
997a062ebd
Support gitlab private-token (or personal-access-token) for easier access via gitlab API
...
Config example:
$HOME/.composer/auth.json
{
"gitlab-token": {
"gitlab.com": "YOUR-TOKEN-HERE"
}
}
Gitlab API authentication doc: http://doc.gitlab.com/ce/api/README.html
2016-07-05 18:02:39 +08:00
87fbf4a6cd
Clean ups, refs #5485
2016-07-02 17:49:46 +01:00
5a31c75289
Fix some of the remaining OAuth issues.
...
- Bitbucket will silently redirect to a login page when downloading a zip.
Added a check to see if the content-type is not text/html
- Make the path from Basic Authentication to OAuth as smooth as possible.
2016-07-02 15:10:33 +02:00
1241e3e83c
Simplify the if statement.
2016-06-11 17:33:58 +02:00
7716ef059b
Add the access token as query string parameter.
2016-06-11 17:33:58 +02:00
6c8b0cc2c1
Change authentication for bitbucket to oauth.
2016-06-11 17:33:58 +02:00
73d9a4717d
Update list of ciphers /cc @cs278
2016-06-11 11:19:58 +01:00
3ac822d5e2
Fix access_token param being incorrectly added on github requests after a redirection, fixes #5099
2016-05-17 23:02:28 +01:00
143db7a9f5
Fix degraded mode usage on packagist, fixes #5350
2016-05-17 14:08:14 +01:00
36665d791d
Merge branch '1.0'
2016-04-29 16:03:14 +01:00
c66639fe03
Fix content-length check to look at the last header received, fixes #5268
2016-04-29 16:03:05 +01:00
2062070be9
Warn users with secure-http disabled once per hostname they access insecurely to avoid bad URLs going by undetected, fixes #5008
2016-04-19 22:29:04 +01:00
31dcc0bdea
Merge branch '1.0'
2016-04-19 15:44:38 +01:00
1bf711fe1f
Guard against mbstring func_overload, fixes #5218
2016-04-19 15:44:13 +01:00
d716c73333
fail download on content-length mismatch
2016-04-18 20:42:38 +01:00
765a958c42
Merge pull request #5137 from dzuelke/rfs_conlen
...
Fail download on content-length mismatch
2016-04-11 17:03:58 +01:00
b1723644e0
Use extracted ca-bundle package
2016-04-11 16:33:29 +01:00
e2056499cb
Avoid open_basedir warnings on is_dir() calls when probing for CABundle
2016-04-11 08:45:25 +01:00
5dd4d69a6d
fail download on content-length mismatch
2016-04-01 01:36:05 +02:00
49524bc4ba
Centralize secure-http checking
2016-03-28 22:01:32 +02:00
37a1e12672
Mark failed downloads as failed instead of 100% complete, fixes #5111
2016-03-27 17:14:51 +01:00
4cc719cab3
Add support for SSL_CERT_DIR and openssl.capath, fixes #5017
2016-03-07 13:07:02 +00:00
e94066967c
Add debugging info about proxy usage, refs #4332
2016-03-02 18:28:44 +00:00
f794ee7870
Fixes for implicit variable declarations, return type mismatches and invalid method declarations.
2016-02-27 23:39:57 +01:00
cb59cf0c85
Allow exception to secure-http for packagist provider files and add docs, refs #4907
2016-02-25 12:36:09 +00:00
b6b416111e
Fixed http check
2016-02-11 14:46:38 +01:00
4f5b4aff9c
Undid CS changes
2016-02-11 14:29:37 +01:00
da44f46b9c
Code style fixes
2016-02-11 14:17:45 +01:00
ef60478926
Added secure-http flag, defaults to true
2016-02-11 14:15:03 +01:00
09a6a19257
Avoid decoding gzip responses after a redirect, fixes #4897
2016-02-10 15:24:49 +00:00
49d7d65933
Add verbosity input support to IOInterface
2016-01-29 10:14:12 +00:00
ae14e0f086
Add ssh2 protocol default ports, fixes #4835
2016-01-26 16:53:41 +00:00
1818b95149
CS fixes
2016-01-26 13:07:18 +00:00
5c944d45ac
Merge pull request #4827 from curry684/issue-4203
...
Added more graceful warning suppression utility
2016-01-26 12:31:18 +00:00
fff5074bbf
Fix additionalOptions getting dropped when SAN and redirect handling are combined, refs #4782
2016-01-26 10:44:06 +00:00
76c1645a0e
Merge remote-tracking branch 'upstream/master' into issue-4203
2016-01-25 23:38:13 +01:00
18cd4f966b
Added silencer utility to more gracefully handle error suppression without hiding errors or worse. Fixes #4203 , #4683
2016-01-25 23:37:54 +01:00
bdb97e7527
Reuse new TlsHelper for CA validation, refs #4798
2016-01-25 19:17:56 +00:00
1ea810d40b
Merge remote-tracking branch 'cs278/san-support'
2016-01-25 18:53:45 +00:00
78ffe0fd08
Avoid checking CA files several times
2016-01-25 18:34:52 +00:00
Stefan Grootscholten