Re: SASL auth failure, reported by Cyrus SASL as "no mechanism available"

From: Malcolm Rowe <malcolm-svn-dev_at_farside.org.uk>
Date: 2007-01-04 23:18:08 CET

On Thu, Jan 04, 2007 at 11:56:16AM -0800, Daniel Rall wrote:
> If we compiled both sasl_auth.c and simple_auth.c, could we
> interrogate the installed Cyrus SASL plug-ins at Subversion library
> initialization time, and fall back to simple_auth.c if both the
> ANONYMOUS and CRAM-MD5 plug-ins aren't available?

Whoa, wait a sec. The whole point of SASL is pluggable auth - I
wouldn't want us to be making a policy decision (to fall back on
svn-native auth) based on the presence or absence of particularly-named
SASL auth modules. (Unless those are the only two we can use? But I
didn't think that was the case).

I'd prefer that we attempted SASL auth and failed back to native auth
only if that fails to find a matching mech. (I'm not sure, but it's
likely that that would require us to drop the connection and reconnect,
right?)

Regards,
Malcolm

application/pgp-signature attachment: stored

Received on Thu Jan 4 23:18:25 2007

This message: [ Message body ]
Next message: Malcolm Rowe: "Re: [PATCH][merge-tracking]Remove svn_fs_merge_info__create_index thanks to r22885"
Previous message: Vlad Georgescu: "Re: SASL auth failure, reported by Cyrus SASL as "no mechanism available""
In reply to: Daniel Rall: "Re: SASL auth failure, reported by Cyrus SASL as "no mechanism available""
Next in thread: Vlad Georgescu: "Re: SASL auth failure, reported by Cyrus SASL as "no mechanism available""
Reply: Vlad Georgescu: "Re: SASL auth failure, reported by Cyrus SASL as "no mechanism available""

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]