Avoid signature mismatch issues by using the request URI as sent by the client, before the container gets a chance to tinker with it.
getFiles in ExternalAPI gets an extra boolean argument for ignoring or not deleted filesallow update of deleted files
Move the DTOs outside the client package, now that they're no more used there, so that the GWT compiler can finish faster.
Merge the web_client_signed branch. Now the Web client communicates solely through the REST API with the server. Also, modified the hosted mode launchers a bit to pass the token as a parameter to the client.
Allow GET requests for files with the authorization and date headers passed as request parameters instead of HTTP headers. This should solve some hairy issues on implementing file downloads for browser-based clients.
Add support for authenticated uploads from browser-based web apps using form POST. Essentially we just defer the authentication until we verify that it's a multipart POST with the proper parameters (Date & Authorization with the same content as the respective headers). This resulted in extracting the two main validation procedures into separate reusable methods, isTimeValid() & isSignatureValid().
- Properly encode resource names and paths while constructing the JSON response.- Modify the signature calculation algorithm, in order to accomodate file names with spaces or localized file names. Now the path must be URI-encoded (once!) before being concatenated to the rest of the signature.
Initial import.
View revisions
Also available in: Atom