On Fri, Sep 7, 2012 at 9:53 AM, <cmpilato_at_apache.org> wrote:
> Author: cmpilato
> Date: Fri Sep 7 13:53:05 2012
> New Revision: 1382028
>
> URL: http://svn.apache.org/viewvc?rev=1382028&view=rev
> Log:
> Finish issue #2410 ("Allow client to avoid SSL certificate prompts").
> This adds a runtime configuration knob for explicitly enabling and
> disabling the client certificate path prompt provider.
>
> libsvn_subr/config_file.c
> URL:
> http://svn.apache.org/viewvc/subversion/trunk/subversion/libsvn_subr/config_file.c?rev=1382028&r1=1382027&r2=1382028&view=diff
>
> ==============================================================================
> --- subversion/trunk/subversion/libsvn_subr/config_file.c (original)
> +++ subversion/trunk/subversion/libsvn_subr/config_file.c Fri Sep 7
> 13:53:05 2012
> @@ -1034,6 +1034,13 @@ svn_config_ensure(const char *config_dir
> "# kwallet-svn-application-name-with-pid = yes"
> NL
> #endif
> "###"
> NL
> + "### Set ssl-client-cert-file-prompt to 'yes' to cause the
> client" NL
> + "### to prompt for a path to a client cert file when the server"
> NL
> + "### requests a client cert but no client cert file is found in
> the" NL
> + "### expected place (see the 'ssl-client-cert-file' option in
> the" NL
> + "### 'servers' configuration file). Defaults to 'no'."
> NL
> + "# ssl-client-cert-file-prompt = no"
> NL
> + "###"
> NL
> "### The rest of the [auth] section in this file has been
> deprecated."
>
> NL
> "### Both 'store-passwords' and 'store-auth-creds' can now be"
> NL
>
Shouldn't this default to 'yes' to match the current behavior?
I have only used this feature a few times to test stuff, but I recall being
prompted to type in the path to my cert. So I assume that is what you are
suppressing with this option.
--
Thanks
Mark Phippard
http://markphip.blogspot.com/
Received on 2012-09-07 15:57:57 CEST