MyShaarli/application/api
VirtualTam 63ef549749 API: expect JWT in the Authorization header
Relates to https://github.com/shaarli/Shaarli/pull/731

Added:
- require the presence of the 'Authorization' header

Changed:
- use the HTTP Bearer Token authorization schema

See:
- https://jwt.io/introduction/#how-do-json-web-tokens-work-
- https://tools.ietf.org/html/rfc6750
- http://security.stackexchange.com/q/108662

Signed-off-by: VirtualTam <virtualtam@flibidi.net>
2017-01-15 13:41:04 +01:00
..
controllers REST API structure using Slim framework 2016-12-15 10:36:00 +01:00
exceptions REST API structure using Slim framework 2016-12-15 10:36:00 +01:00
ApiMiddleware.php API: expect JWT in the Authorization header 2017-01-15 13:41:04 +01:00
ApiUtils.php API: fix JWT signature verification 2017-01-04 16:59:47 +01:00