mirror of
https://github.com/warmcat/libwebsockets.git
synced 2025-03-23 00:00:06 +01:00
a74a966fbf
Until now basic auth only protected http actions in the protected mount. This extends the existing basic auth scheme to also be consulted for ws upgrades if a "basic-auth" pvo exists on the selected protocol for the vhost. The value of the pvo is the usual basic auth credentials file same as for the http case. |
||
|---|---|---|
| .. | ||
| mainpage.md | ||
| README-plugin-sshd-base.md | ||
| README.build.md | ||
| README.ci.md | ||
| README.coding.md | ||
| README.content-security-policy.md | ||
| README.contributing.md | ||
| README.esp32.md | ||
| README.generic-sessions.md | ||
| README.generic-table.md | ||
| README.lwsws.md | ||
| README.plugin-acme.md | ||
| README.problems.md | ||
| README.release-policy.md | ||
| README.test-apps.md | ||
| README.unix-domain-reverse-proxy.md | ||
| README.vulnerability-reporting.md | ||
| release-checklist | ||
Vulnerability Reporting
If you become aware of an issue with lws that has a security
dimension for users, please contact andy@warmcat.com by
direct email.
Procedure for announcing vulnerability fixes
The problem and fixed versions will be announced on the libwebsockets mailing list and a note added to the master README.md.