[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: HTTP Authentication by Username Embedded in URL

From: Ben Collins-Sussman <sussman_at_red-bean.com>
Date: Tue, 10 Feb 2009 15:28:01 -0600

I can give a simple answer: it's not a valid HTTP URL. Some web
browsers allow it, but it violates the HTTP specification:

3.2.2 http URL
The "http" scheme is used to locate network resources via the HTTP
protocol. This section defines the scheme-specific syntax and
semantics for http URLs.
http_URL = "http:" "//" host [ ":" port ] [ abs_path [ "?" query ]]

So it's not something svn has bothered to add as an 'extra feature'.
Are you sure your users are being forced to type 'guest/guest'? It
may happen during the first checkout, but the password should be
cached on further updates.

On Tue, Feb 10, 2009 at 7:59 AM, <work2007_at_annevanrossum.nl> wrote:
> Dear all,
> I would like to know why on my system (I don't think it depends on it, but it is Ubuntu 8.10), the username can't be used within the URL:
> svn co https://username:password@server/repos/
> The URL does work in the browser (Mozilla, empty cache)!
> And if it would work, I may use it in svn:externals because that doesn't accept --username and --password switches. And that would mean that I can link in another repository with a guest:guest account relieving the users from the burden of typing "guest" and "guest" when they encounter my open-source directory on this external repository.
> Kind regards,
> Anne
> ------------------------------------------------------
> http://subversion.tigris.org/ds/viewMessage.do?dsForumId=462&dsMessageId=1134269

Received on 2009-02-10 22:28:26 CET

This is an archived mail posted to the Subversion Dev mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.