RE: svn commit failing - username not sent on the MERGE webdav command

Ok I think this is onto something. I changed

<LimitExcept MERGE> to <LimitExcept GET> and the commit worked. When I removed the LIMITEXCEPT completely it didn't even request my password (and failed).

I'll have our tester test it with that tonight if possible.

Thank You!

Question: What *should* be specified?

-----Original Message-----
From: Branko Čibej [mailto:brane_at_apache.org]
Sent: Thursday, August 10, 2017 11:18 AM
To: users_at_subversion.apache.org
Subject: Re: svn commit failing - username not sent on the MERGE webdav command

On 10.08.2017 19:39, greg_at_gregj.me wrote:
> Sorry for the late reply..
>
> Our httpd.conf file contains for this location (some information retracted..
> and some lines are commeted out)
>
> ## Main Subversion repository
> <Location /ec-svn>
> DAV svn
> SVNPath "/usr/local/svn/ec-svn/repo"
> ErrorDocument 404 default
> AuthzSVNAccessFile "/usr/local/svn/ec-svn/auth/authaccess"
> SVNIndexXSLT /xslt/default-svnindex.xsl
> SVNPathAuthz off
> #AuthzSVNAuthoritive off
> #AuthUserFile /usr/local/svn/ec-svn/conf/htpasswd
> AuthLDAPURL ldap://********
> AuthLDAPBindDN "*****"
> AuthLDAPBindPassword "*****"
> AuthType Basic
> AuthBasicProvider ldap
> #AuthzLDAPAuthoritative on
> AuthName " svn repository edisvn"
> <LimitExcept MERGE>
> Require valid-user
> </LimitExcept>
> </Location>

So you're telling httpd that MERGE requests do not need authentication.
Why then are you surprised when it doesn't provide the credentials to mod_dav_svn?

-- Brane
Received on 2017-08-10 23:12:23 CEST