Skip to content

Web server simplifications and handers#7429

Merged
me-no-dev merged 29 commits into
espressif:masterfrom
dirkx:WebServerSimplificationsAndHanders
Jan 16, 2024
Merged

Web server simplifications and handers#7429
me-no-dev merged 29 commits into
espressif:masterfrom
dirkx:WebServerSimplificationsAndHanders

Conversation

@dirkx
Copy link
Copy Markdown
Contributor

@dirkx dirkx commented Nov 4, 2022
edited
Loading

Proposal to simplify the authentication code in de webserver (and potentially also derisk it); and to also allow for richer authentication; such as with multiple usernames and passwords, the use of Time based one-time passwords or typical IoT bearer tokens.

Also adds a number of extra examples - including one that uses an authentication cookie.

Has been tested on ESP-8266 and ESP-32.

dirkx added 11 commits October 29, 2022 12:35
@VojtechBartoska VojtechBartoska added the Status: Needs investigation We need to do some research before taking next steps on this issue label Nov 16, 2022
@VojtechBartoska VojtechBartoska added the Status: Awaiting triage Issue is waiting for triage label Dec 14, 2022
@VojtechBartoska VojtechBartoska removed the Status: Awaiting triage Issue is waiting for triage label Dec 14, 2022
@CLAassistant
Copy link
Copy Markdown

CLAassistant commented May 6, 2023
edited
Loading

CLA assistant check
All committers have signed the CLA.

@VojtechBartoska VojtechBartoska added this to the 3.0.0-RC1 milestone Nov 28, 2023
@Jason2866
Copy link
Copy Markdown
Collaborator

Jason2866 commented Dec 11, 2023

With the changes a simple Webserver now includes mbedtls software libs. This increases code size a lot. Actually the md5 routine from mbedtls is used which is in all MCUs a routine which is embedded in ROM and does not increase code size.

@dirkx
Copy link
Copy Markdown
Contributor Author

dirkx commented Dec 11, 2023
edited
Loading

@Jason2866 -- Ok - so your estimate is that by replacing md5 by the rom routines - we can totally remove the need for mbedtls ? Correct ? If so - happy to give that a try.

@Jason2866
Copy link
Copy Markdown
Collaborator

Jason2866 commented Dec 11, 2023

Yes, see this change #8667

@SuGlider SuGlider requested a review from lucasssvaz December 18, 2023 13:26
lucasssvaz
lucasssvaz requested changes Dec 20, 2023
View reviewed changes
Copy link
Copy Markdown
Member

@lucasssvaz lucasssvaz left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this is a very nice improvement but needs some small fixes first, mainly the mbedtls overhead and the crashing when using a bearer. Please also fix the conflicts to update do 3.0.0

Comment thread libraries/ESP32/examples/MD5Builder/MD5Builder.ino Outdated
Comment thread libraries/WebServer/examples/HttpAuthCallback/HttpAuthCallback.ino Outdated
Comment thread libraries/WebServer/examples/HttpAuthCallbackInline/HttpAuthCallbackInline.ino Outdated
Comment thread libraries/WebServer/examples/HttpAuthOneTimePassword/HttpAuthOneTimePassword.ino Outdated
Comment thread libraries/WebServer/examples/HttpAuthOneTimePasswordNaive/HttpAuthOneTimePasswordNaive.ino Outdated
Comment thread libraries/WebServer/examples/HttpBasicAuthSHA1/HttpBasicAuthSHA1.ino
Comment thread libraries/WebServer/examples/HttpBasicAuthSHA1/HttpBasicAuthSHA1.ino
Comment thread libraries/ESP32/examples/HEXBuilder/HEXBuilder.ino Outdated
Comment thread libraries/ESP32/examples/MD5Builder/MD5Builder.ino Outdated
Comment thread libraries/ESP32/examples/MD5Builder/MD5Builder.ino
@lucasssvaz lucasssvaz added Resolution: Awaiting response and removed Status: Needs investigation We need to do some research before taking next steps on this issue labels Dec 20, 2023
@lucasssvaz lucasssvaz added the Area: Libraries Issue is related to Library support. label Jan 8, 2024
@lucasssvaz lucasssvaz force-pushed the WebServerSimplificationsAndHanders branch from 441848f to dcd64e1 Compare January 8, 2024 16:36
@lucasssvaz lucasssvaz force-pushed the WebServerSimplificationsAndHanders branch from 21889f9 to d24668e Compare January 9, 2024 16:35
@lucasssvaz lucasssvaz force-pushed the WebServerSimplificationsAndHanders branch from 98b3d32 to 81663f5 Compare January 11, 2024 21:28
lucasssvaz
lucasssvaz reviewed Jan 16, 2024
View reviewed changes
Copy link
Copy Markdown
Member

@lucasssvaz lucasssvaz left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@SuGlider @P-R-O-C-H-Y PR fixed and ready for review

me-no-dev
me-no-dev reviewed Jan 16, 2024
View reviewed changes
Comment thread libraries/WebServer/src/WebServer.cpp
me-no-dev
me-no-dev reviewed Jan 16, 2024
View reviewed changes
Comment thread libraries/WebServer/src/WebServer.cpp Outdated
@lucasssvaz lucasssvaz added Status: Review needed Issue or PR is awaiting review and removed Status: In Progress ⚠️ Issue is in progress labels Jan 16, 2024
@lucasssvaz lucasssvaz added Status: Pending Merge Pull Request is ready to be merged and removed Status: Review needed Issue or PR is awaiting review labels Jan 16, 2024
@lucasssvaz lucasssvaz mentioned this pull request Jan 16, 2024
Merged
@me-no-dev me-no-dev merged commit e581717 into espressif:master Jan 16, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@me-no-dev me-no-dev me-no-dev approved these changes

@lucasssvaz lucasssvaz lucasssvaz approved these changes

@SuGlider SuGlider Awaiting requested review from SuGlider SuGlider is a code owner

@P-R-O-C-H-Y P-R-O-C-H-Y Awaiting requested review from P-R-O-C-H-Y

Assignees

@lucasssvaz lucasssvaz

Labels

Area: Libraries Issue is related to Library support. Status: Pending Merge Pull Request is ready to be merged

Projects

Arduino ESP32 Core Project Roadmap
Status: Done

Milestone

3.0.0-RC1

Development

Successfully merging this pull request may close these issues.

7 participants

@dirkx @CLAassistant @Jason2866 @me-no-dev @lucasssvaz @VojtechBartoska @SuGlider