dkam/clinch
1
0
Fork 0
Code Issues 7 Pull Requests Actions Packages Projects Releases Wiki Activity

0 Releases 8 Tags

RSS Feed
  • v0.8.8 fd8785a43d
    Compare

    Add API keys / bearer tokens for forward auth
    Some checks failed
    CI / scan_ruby (push) Has been cancelled
    Details
    CI / scan_js (push) Has been cancelled
    Details
    CI / scan_container (push) Has been cancelled
    Details
    CI / lint (push) Has been cancelled
    Details
    CI / test (push) Has been cancelled
    Details
    CI / system-test (push) Has been cancelled
    Details

    dkam released this 2026-03-05 10:45:40 +00:00 | 14 commits to main since this release

    Enables server-to-server authentication for forward auth applications
    (e.g., video players accessing WebDAV) where browser cookies aren't
    available. API keys use clk_ prefixed tokens stored as HMAC hashes.

    Bearer token auth is checked before cookie auth in /api/verify.
    Invalid tokens return 401 JSON (no redirect). Requests without
    bearer tokens fall through to existing cookie flow unchanged.

    Co-Authored-By: Claude Opus 4.6 noreply@anthropic.com

    Downloads