You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@subversion.apache.org by "David W. Wilson" <wi...@anseri.com> on 2008/05/21 14:04:17 UTC

Authentication issue with SVN URL

I have a Windows XP source server hosting Collabnet Subversion server +
mod_auth_sspi (Windows domain authentication). mod_auth_sspi is configured
to give both my user account and admin account full read/write access to the
relevant repository. I am able to successfully perform all SVN commands
(actually TortoiseSVN commands) successfully under either my user or admin
account.

 

If I log into Windows with my user account, then attempt to use FireFox to
browse a SVN source URL (say the repository root URL
http://sourceserver/svn/src), I get two SSPI (Windows domain) challenges.
The first challenge is

 

Enter user name and password for "" at http://sourceserver/

 

This challenge accepts only my user account credentials, but rejects my
admin account credentials.

 

The second challenge is

 

Enter user name and password for "Anseri Source Server" at
http://sourceserver/

 

This challenge accepts either my user or admin credentials.

 

The second challenge I recognize, it identifies the server as "Anseri Source
Server", the way I configured it, and accepts the credentials I authorized
for source server access.

 

I have no problems browsing when I use IE, but I suspect this is because IE
is caching my credentials while Firefox is not. I would bet that IE is
answering two challenges as well from cache.

 

How do I figure out where the first challenge is coming from? Could it be
Collabnet SVN Server's HTTP server? How do I verify this?

Re: Authentication issue with SVN URL

Posted by Greg Thomas <th...@omc.bt.co.uk>.

On Wed, 21 May 2008 10:04:17 -0400, "David W. Wilson"
<wi...@anseri.com> wrote:

>If I log into Windows with my user account, then attempt to use FireFox to
>browse a SVN source URL (say the repository root URL
>http://sourceserver/svn/src), I get two SSPI (Windows domain) challenges.

Dunno why you're getting two challenges, but setting Firefox to
support SSPI authentication for your domain may get rid of them both.

http://kb.mozillazine.org/Network.automatic-ntlm-auth.trusted-uris
Suggests setting 

network.automatic-ntlm-auth.trusted-uris=sourceserver

in about:config should help,

Greg
-- 
This post represents the views of the author and does
not necessarily accurately represent the views of BT.

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org