History | View | Annotate | Download (4.2 kB)
Allow GET requests for files with the authorization and date headers passed as request parameters instead of HTTP headers. This should solve some hairy issues on implementing file downloads for browser-based clients.
Add support for authenticated uploads from browser-based web apps using form POST. Essentially we just defer the authentication until we verify that it's a multipart POST with the proper parameters (Date & Authorization with the same content as the respective headers). This resulted in extracting the two main validation procedures into separate reusable methods, isTimeValid() & isSignatureValid().
- Properly encode resource names and paths while constructing the JSON response.- Modify the signature calculation algorithm, in order to accomodate file names with spaces or localized file names. Now the path must be URI-encoded (once!) before being concatenated to the rest of the signature.
Initial import.