[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: No authentication dialog prompt when Visual SVN integrated security and basic authentication enabled

From: Stefan Küng <tortoisesvn_at_gmail.com>
Date: Thu, 20 Jan 2011 15:10:18 +0100

On Wed, Jan 19, 2011 at 22:52, wladek <seanglover_at_ca.ibm.com> wrote:
> Hi,
>
> I apologize if this isn't the appropriate place to raise this issue.  I've looked for duplicate issues raised in your mailing list archive and trunk changelog.
>
> We have a Visual SVN Server running with a commercial license.  It's running over HTTP w/ TLS.  We are using Integrated Security for the authentication mode.  TortoiseSVN latest version (1.6.12) works properly with this mode.  I want to enable Integrated Security and Basic Windows Authentication.  However, when logged into a windows machine with an account not part of a repo's ACL I am not prompted with the username/password dialog when the initial challenge fails.  This functionality works properly in TortoiseSVN 1.6.10.
>
> Someone has already raised this as an issue on another forum.
>
> http://subversion.wandisco.com/forums/20-tortoisesvn-community-support/636-tortoisesvn-1611-does-not-bring-up-authentication-window-was-ok-with-1610.html
>
> It looks as though stefan commented that it was a problem with an external lib integrated with TortoiseSVN.  Are there plans to integrate the latest version of this library and fix the issue in a future release?
>

I don't think this is the same problem.
Your problem is that the authentication is successful (the user
properly authenticates against the domain), but then the authorization
fails (the user doesn't have access to the repository).
In that case, you'll never get an auth prompt: the user doesn't have access.
You only get auth prompts if the *authentication* fails (i.e., if it's
not clear whether the user really is who he says). But once that's
clear, there's no prompt anymore: the server already knows whether
that user has access or not, and impersonating another user is
illegal...

Stefan

-- 
       ___
  oo  // \\      "De Chelonian Mobile"
 (_,\/ \_/ \     TortoiseSVN
   \ \_/_\_/>    The coolest Interface to (Sub)Version Control
   /_/   \_\     http://tortoisesvn.net
------------------------------------------------------
http://tortoisesvn.tigris.org/ds/viewMessage.do?dsForumId=4061&dsMessageId=2699352
To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_tortoisesvn.tigris.org].
Received on 2011-01-20 15:10:48 CET

This is an archived mail posted to the TortoiseSVN Users mailing list.