add option to allow unsafe digest

Author: Retropex

src/datum_api.c

@@ -441,7 +441,7 @@ bool datum_api_check_admin_password_only(struct MHD_Connection * const connectio
 
 static enum MHD_DigestAuthAlgorithm datum_api_pick_digest_algo(struct MHD_Connection * const connection) {
 	const char * const ua = MHD_lookup_connection_value(connection, MHD_HEADER_KIND, "User-Agent");
-	if (strstr(ua, "AppleWebKit/") && !(strstr(ua, "Chrome/") || strstr(ua, "Brave/") || strstr(ua, "Edge/"))) {
+	if (strstr(ua, "AppleWebKit/") && !(strstr(ua, "Chrome/") || strstr(ua, "Brave/") || strstr(ua, "Edge/")) && datum_config.api_allow_unsecure_macos_auth) {
 		static bool safari_warned = false;
 		if (!(safari_warned)) {
 			DLOG_WARN("Detected login request from Apple Safari. For some reason, this browser only supports obsolete and insecure MD5 digest authentication. Login at your own risk!");

src/datum_conf.c

@@ -139,6 +139,8 @@ const T_DATUM_CONFIG_ITEM datum_config_options[] = {
 	{ .var_type = DATUM_CONF_BOOL, 		.category = "api",	 		.name = "modify_conf",				.description = "Enable modifying the config file from API/dashboard",
 		.example_default = true,
 		.required = false, .ptr = &datum_config.api_modify_conf, 						.default_bool = false },
+	{ .var_type = DATUM_CONF_BOOL, 		.category = "api", 			.name = "allow_unsecure_macos_auth",		.description = "Allow unsecure authentication on macOS",
+		.required = false, .ptr = &datum_config.api_allow_unsecure_macos_auth,				.default_bool = false },
 
 	// extra block submissions list
 	{ .var_type = DATUM_CONF_STRING_ARRAY, 	.category = "extra_block_submissions", 	.name = "urls",		.description = "Array of bitcoind RPC URLs to submit our blocks to directly.  Include auth info: http://user:pass@IP",

src/datum_conf.h

@@ -136,6 +136,7 @@ typedef struct {
 	char api_listen_addr[128];
 	int api_listen_port;
 	bool api_modify_conf;
+	bool api_allow_unsecure_macos_auth;
 	json_t *config_json;
 
 	int extra_block_submissions_count;