[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Linux mod_auth_ntlm_winbind and TortoiseSVN

From: <Rudolf.Lippert_at_Proleit.de>
Date: Wed, 1 Oct 2008 10:35:43 +0200

Hi all!

I have a problem with at least two edges here:
First:: mod_auth_ntlm_winbind does not support NTLM over HTTPS, while
TortoiseSVN does not support NTLM without HTTPS. At least, this is my
understanding so far.
Second: When checking out via HTTPS, TortoiseSVN receives a few files,
then something goes wrong with authentication, and TortoiseSVN simply
says: "Finished". The truth is that there are lots of files still missing
in the working copy. Hitting "SVN Update" makes TSVN download a few more
files - and so on.

Just to be complete: What happens on the server side is:
[2008/10/01 10:04:34, 1] libsmb/ntlmssp.c:ntlmssp_update(334)
  got NTLMSSP command 3, expected 1
(lots of times)

http://adldap.sourceforge.net/wiki/doku.php?id=seamless_authentication
tells us that "mod_auth_ntlm_winbind does not work over HTTPS, you need to
header redirect them to HTTP for authentication, and then header redirect
them back into HTTPS" - could that work? Probably not, as the
authentication part is the one we need HTTPS for, right?

If I switch over to HTTP, I need to enter a password, but the checkout
works. But that just isn't the Single-Sign-On solution I am looking for.

Can anyone give me a pointer to
- either enabling HTTPS for mod_auth_ntlm_winbind
- or enabling HTTP for NTLM in TortoiseSVN
?
If I don't get this working, I'll have to use a Windows server, and I
really don't want to do that.

Aside of that, is there a way to display an error message if the
connection breaks during checkout/update? There should be a HTTP 401
coming through, but I can't verify that.

Thanks in advance!
Rudi
Received on 2008-10-01 10:32:31 CEST

This is an archived mail posted to the TortoiseSVN Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.