aboutsummaryrefslogtreecommitdiff
path: root/docs/curl.1
AgeCommit message (Collapse)Author
2014-11-24SSL: Add PEM format support for public key pinningmoparisthebest
2014-11-06docs: Updated following the addition of SSPI based HTTP digest authSteve Holme
2014-11-06curl.1: show zone index use in a URLDaniel Stenberg
2014-10-29sasl_sspi: Allow DIGEST-MD5 to use current windows credentialsSteve Holme
Fixed the ability to use the current log-in credentials with DIGEST-MD5. I had previously disabled this functionality in commit 607883f13c as I couldn't get this to work under Windows 8, however, from testing HTTP Digest authentication through Windows SSPI and then further testing of this code I have found it works in Windows 7. Some further investigation is required to see what the differences are between Windows 7 and 8, but for now enable this functionality as the code will return an error when AcquireCredentialsHandle() fails.
2014-10-21curl.1: edited for clarityDaniel Stenberg
2014-10-07SSL: implement public key pinningmoparisthebest
Option --pinnedpubkey takes a path to a public key in DER format and only connect if it matches (currently only implemented with OpenSSL). Provides CURLOPT_PINNEDPUBLICKEY for curl_easy_setopt(). Extract a public RSA key from a website like so: openssl s_client -connect google.com:443 2>&1 < /dev/null | \ sed -n '/-----BEGIN/,/-----END/p' | openssl x509 -noout -pubkey \ | openssl rsa -pubin -outform DER > google.com.der
2014-10-03ssh: improve key file searchJeremy Lin
For private keys, use the first match from: user-specified key file (if provided), ~/.ssh/id_rsa, ~/.ssh/id_dsa, ./id_rsa, ./id_dsa Note that the previous code only looked for id_dsa files. id_rsa is now generally preferred, as it supports larger key sizes. For public keys, use the user-specified key file, if provided. Otherwise, try to extract the public key from the private key file. This means that passing --pubkey is typically no longer required, and makes the key-handling behavior more like OpenSSH.
2014-10-01curl.1: mention quoting in the URL sectionDaniel Stenberg
and separate the example URLs with newlines
2014-08-29curl.1: add an example for -HDaniel Stenberg
2014-08-23curl.1: clarify --limit-rate's effect on both directionsDaniel Stenberg
Bug: http://curl.haxx.se/bug/view.cgi?id=1414 Reported-by: teo8976
2014-08-23curl.1: mention the --post30x options within the --location descDaniel Stenberg
2014-08-16docs: Escaped single backslashSteve Holme
2014-08-16docs: Added Kerberos V5 and NTLM domain information to --userSteve Holme
2014-08-16docs: Added Kerberos V5 to the --user SSPI current credentials usageSteve Holme
2014-08-09docs: Update SPNEGO and GSS-API related doc sectionsMichael Osipov
Reflect recent changes in SPNEGO and GSS-API code in the docs. Update them with appropriate namings and remove visible spots for GSS-Negotiate.
2014-08-07docs: Added Negotiate to the SSPI current credentials usage descriptionSteve Holme
2014-07-03curl.1: minor language fixDaniel Stenberg
Bug: http://curl.haxx.se/mail/archive-2014-07/0006.html
2014-05-23curl.1: clarify that -u can't specify a user with colonDaniel Stenberg
2014-05-07curl.1: Added missing --login-options optionSteve Holme
...and removed ;OPTIONS from --user as that functionality was removed in 7.34.0.
2014-04-04docs: this is for 7.37.0Daniel Stenberg
And clarify for curl that --proxy-header now must be used for headers that are meant for a proxy, and they will not be included if the request is not for a proxy.
2014-04-04curl.1: documented --proxy-headerDaniel Stenberg
2014-03-14docs: fixed a bunch of typosDan Fandrich
2014-02-26tool_getparam: Added initial support for --next/-:Steve Holme
Added initial support for --next/-: which will be used to replace the rather confusing : command line operation what was used for the URL specific options prototype.
2014-02-18curl.1: update the description of --tlsv1Kamil Dudka
... and mention the --tlsv1.[0-2] options in the --tslv1 entry Reported-by: Hubert Kario
2014-02-10NPN/ALPN: allow disabling via command lineFabian Frank
when using --http2 one can now selectively disable NPN or ALPN with --no-alpn and --no-npn. for now honored with NSS only. TODO: honor this option with GnuTLS and OpenSSL
2014-01-30http2: call it "HTTP 2" and not 2.0Daniel Stenberg
The minor version will be dropped for HTTP 2 so it will make sense to avoid using it in option names etc.
2013-12-18curl.1: remove URL encoding phrase from --data descriptionDaniel Stenberg
... it could be misleading a reader into thinking it _has_ to be encoded.
2013-12-15curl.1 document -J doesn't %-decodeDaniel Stenberg
...also added as KNOWN_BUG #87 with reference to bug #1294
2013-11-29parseconfig: dash options can't specified with colon or equalsDaniel Stenberg
Bug: http://curl.haxx.se/bug/view.cgi?id=1297 Reported-by: Michael Osipov
2013-11-29curl.1: -G also takes --data-urlencode dataDaniel Stenberg
2013-11-17smtp: Changed the default command to HELP when no options are specifiedSteve Holme
Otherwise a NOOP operation would be performed which a) only returns a single line response and not a multiline response where -I needs to be used, and b) provides an inconsistent user experience compared to that of the POP3 and IMAP protocols.
2013-11-15DOCS: Updated manpage following recent SMTP modificationsSteve Holme
* Added SMTP section to --request * Expanded --mail-rcpt to describe the usage when using the verify and expand commands.
2013-11-12curl.1: mention that -O does no URL decodingDaniel Stenberg
2013-11-03DOCS: Expanded --request description to include POP3 and IMAP detailsSteve Holme
2013-11-03DOCS: Updated --list-only description to include POP3Steve Holme
Additionally corrected typos in --oauth2-bearer protocol list.
2013-10-20curl.1: add missing exit-codeGisle Vanem
I noted a missing text for exit-code 89 in docs/curl.1
2013-10-15curl.1: fix typo conjuction -> conjunctionAlessandro Ghedini
2013-10-15curl: document the new --tlsv1.[012] optionsDaniel Stenberg
2013-10-12curl: rename --bearer to --oauth2-bearerDaniel Stenberg
The option '--bearer' might be slightly ambiguous in name. It doesn't create any conflict that I am aware of at the moment, however, OAUTH v2 is not the only authentication mechanism which uses "bearer" tokens. Reported-by: Kyle L. Huff URL: http://curl.haxx.se/mail/lib-2013-10/0064.html
2013-10-11minor fix in docHeinrich Schaefer
2013-09-21curl.1: Added information about optional login options to --user in manpageSteve Holme
Added missing information, from curl 7.31.0, regarding the use of the optional login options that may be specified as part of --user. For example: --user 'user:password;auth=NTLM' in IMAP, POP3 and SMTP protocols.
2013-09-20Documented --dns-* options in curl manpageKim Vandry
2013-09-20pop3: Added basic SASL XOAUTH2 supportSteve Holme
Added the ability to use an XOAUTH2 bearer token [RFC6750] with POP3 for authentication using RFC6749 "OAuth 2.0 Authorization Framework". The bearer token is expected to be valid for the user specified in conn->user. If CURLOPT_XOAUTH2_BEARER is defined and the connection has an advertised auth mechanism of "XOAUTH2", the user and access token are formatted as a base64 encoded string and sent to the server as "AUTH XOAUTH2 <bearer token>".
2013-09-13curl.1: detail how short/long options workDaniel Stenberg
URL: http://curl.haxx.se/bug/view.cgi?id=1279 Suggested-by: Jerry Krinock
2013-09-06--data: mention CRLF treatment when reading from fileDaniel Stenberg
2013-09-05darwinssl: add support for PKCS#12 files for client authenticationNick Zitzmann
I also documented the fact that the OpenSSL engine also supports them.
2013-09-04curl: add --http1.1 and --http2.0 optionsDaniel Stenberg
2013-08-31-x: rephrased the --proxy section somewhatDaniel Stenberg
2013-08-30curl.1: Add usage of '--bearer' optionKyle L. Huff
2013-07-14src/tool: allow timeouts to accept decimal valuesDave Reisner
Implement wrappers around strtod to convert the user argument to a double with sane error checking. Use this to allow --max-time and --connect-timeout to accept decimal values instead of strictly integers. The manpage is updated to make mention of this feature and, additionally, forewarn that the actual timeout of the operation can vary in its precision (particularly as the value increases in its decimal precision).