ali-security/hawk-5684

Hawk is an HTTP authentication scheme that uses message authentication codes (MAC) to provide partial cryptographic verification of HTTP requests. It's designed for services that need secure authentication without full TLS encryption, offering protection against request tampering while requiring shared symmetric keys between client and server. The project includes features like replay protection through timestamps and nonces, optional payload validation, and support for temporary access tokens (bewit) for limited resource sharing. It's particularly useful for APIs and web services where TLS isn't feasible for all endpoints but authentication is still critical.