aboutsummaryrefslogtreecommitdiffstats
path: root/src
AgeCommit message (Collapse)Author
2013-02-09Make sure rest_terminate is always calledLoïc Hoguin
Also improves error reporting.
2013-02-09Fix Location headerSlava Yurin
Fix #414
2013-02-06Fix crashes when creating the requestLoïc Hoguin
We now obtain the peer address before creating the Req object. If an error occurs, then something went wrong, we close the connection nicely directly.
2013-02-06Strip whitespaces when authorization type is unknownLoïc Hoguin
2013-02-06Merge branch 'expose-to_upper' of git://github.com/dvv/cowboyLoïc Hoguin
2013-02-06Merge branch 'no-unicode-uri' of git://github.com/dvv/cowboyLoïc Hoguin
2013-02-06Merge branch 'master' of git://github.com/tsloughter/cowboyLoïc Hoguin
2013-02-01add guards on set_resp_body_fun for streamlen and streamfunTristan Sloughter
2013-01-30Make sure the peer name is always availableLoïc Hoguin
2013-01-30Fix a new warning found by Dialyzer R16ALoïc Hoguin
2013-01-29Merge branch 'patch-1' of https://github.com/CamShaft/cowboyLoïc Hoguin
Conflicts: src/cowboy_rest.erl
2013-01-29Merge branch 'feature_basic_auth' of https://github.com/ivlis/cowboyLoïc Hoguin
2013-01-30Implement authorization header parsingIvan Lisenkov
Basic HTTP authorization according to RFC 2617 is implemented. Added an example of its usage with REST handler.
2013-01-29allow POST rest handling to specify path after accepting contentTom Burdick
2013-01-29Merge branch 'rest_patch' of https://github.com/treetopllc/cowboyLoïc Hoguin
2013-01-29Fix chunked streaming of request body and improve speedLoïc Hoguin
2013-01-29add patch support to cowboy_restTom Burdick
2013-01-29Fix {cowboy_req, resp_sent} potentially leaking in loop handlersLoïc Hoguin
2013-01-29Do not attempt to skip the request body on Connection: closeLoïc Hoguin
2013-01-29Merge branch 'fix/callback_specs' of https://github.com/keynslug/cowboyLoïc Hoguin
2013-01-29If a binding is reused, we check that values are identicalLoïc Hoguin
This is more for consistency than anything.
2013-01-28Add the 'function' constraintLoïc Hoguin
2013-01-28Add the 'int' constraintLoïc Hoguin
2013-01-28New routingLoïc Hoguin
Ultimately few things change, it's mostly just a nicer syntax and slightly different expectations. The name of the value `dispatch` did not change, because the previous dispatch values will now fail if the code is not updated to using `cowboy_router:compile/1`. No constraints have been implemented in this commit.
2013-01-26Update handler callback specsAndrew Majorov
There is one another {upgrade, ...} quintuple allowed as the result of Handler:init call, somewhy not mentioned in the callback specifications.
2013-01-25Expose uppercase binary converterVladimir Dronnikov
2013-01-25Do not transform URIs to UnicodeVladimir Dronnikov
2013-01-22Remove cowboy_dispatcherLoïc Hoguin
Types and code are moved to cowboy_router. The match/3 export from cowboy_dispatcher isn't available anymore as it is called internally.
2013-01-22Merge branch 'fix_change_state' of https://github.com/nevar/cowboyLoïc Hoguin
2013-01-22Fix handler state change in cowboy_restSlava Yurin
2013-01-22Do not crash if connection is closed while sending static fileLoïc Hoguin
2013-01-22Merge branch 'master' of https://github.com/0x00F6/cowboyLoïc Hoguin
2013-01-22Make cowboy_static use universal time0x00F6
2013-01-22Replace terminate/2 with terminate/3, adding a ReasonLoïc Hoguin
This should have been done a *long* time ago, back when I initially added Websocket support. This is the first part of two in improving loop handler support with regards to socket closure. Reason may include: {normal, shutdown} for the most normal shutdown, {normal, timeout} for a loop handler timeout shutdown, or {error, _} if an error occured.
2013-01-22Fix cowboy_websocket_handler callback specLoïc Hoguin
2013-01-20Fix an issue for replies in onresponse mishandling headersLoïc Hoguin
Reported and fixed over email by Adrian Roe.
2013-01-20Add missing clause to cowboy_req:has_resp_body/1Loïc Hoguin
2013-01-19Make cowboy_req:has_body/1 return boolean()Loïc Hoguin
This makes it similar to the other has_* functions.
2013-01-18Remove a few old @todo commentsLoïc Hoguin
2013-01-18Set max_keepalive default to 100 instead of infinityLoïc Hoguin
2013-01-17Add cowboy_bstr:capitalize_token/1Loïc Hoguin
For optional header name capitalization. See the guide section about it.
2013-01-17Add cowboy_websocket:close_code/0Loïc Hoguin
Also fixes a warning.
2013-01-14Add Sec-Websocket-Protocol header parsingLoïc Hoguin
2013-01-14Improve websocket close handlingLoïc Hoguin
We now always send a failure reason (bad protocol, bad encoding, etc.) unless the closure was initiated by the client and it didn't send a close code. We now check that the close frames have a payload that is valid UTF-8, unless they don't have a payload at all. We now do not crash the process anymore when bad opcodes are sent, or when the opcode 0 is sent before fragmentation was initiated. Overall this makes us closer to full compliance with the RFC.
2013-01-13Websocket text frames are now checked for UTF-8 correctnessLoïc Hoguin
The autobahntestsuite now passes 100% of the tests. We are getting close to fully implementing the Websocket RFC.
2013-01-12Unmask websocket frames on the fly and optimize the codeLoïc Hoguin
No change in functionality, but this will allow us to validate that text frames are utf8 without having to receive the frame entirely.
2013-01-12All frames sent from client to server MUST be maskedLoïc Hoguin
Good in theory, but implementations may vary. If something stops working after this commit we might need some tweaks to support existing clients. Please try it and give feedback.
2013-01-10Remove support for Websocket hixie76 draftLoïc Hoguin
It was only used by Safari 5.0.1 and possibly 5.1. Their market share is dropping as we speak. It was also insecure (disabled in Firefox for that reason). This will allow us to make much more efficient and cleaner code for the rest of the Websocket versions we support (drafts 7 to 17 + RFC), which are pretty much all versions seen in the wild excluding the one we're removing here.
2013-01-07Add optional automatic response body compressionLoïc Hoguin
This behavior can be enabled with the `compress` protocol option. See the `compress_response` example for more details. All tests are now ran with and without compression for both HTTP and HTTPS.
2013-01-06Add protection against slowloris vulnerabilityLoïc Hoguin
This changes the behavior of the `timeout` protocol option to mean "Time in which the full request line and headers must be received". The default of 5s should be fine for all normal uses. This change has no noticeable impact on performance and is thus enabled by default for everyone. It can be disabled by setting `timeout` to `infinity` although that is definitely not encouraged. Inspired by the contribution from @naryl on github.