So, is anonymous access required for cloning even on Unix/Linux? Tony Perovic Compumation, Inc. ________________________________ From: fossil-users-boun...@lists.fossil-scm.org [mailto:fossil-users-boun...@lists.fossil-scm.org] On Behalf Of Richard Hipp Sent: Thursday, April 07, 2011 9:54 AM To: fossil-users@lists.fossil-scm.org Subject: Re: [fossil-users] Cloning on IIS
On Thu, Apr 7, 2011 at 10:48 AM, Tony Perovic <tpero...@compumation.com<mailto:tpero...@compumation.com>> wrote: I'm still having trouble cloning/pulling/pushing on Windows/IIS.... This is my configuration: Anonymous access.in<http://access.in> IIS is disabled. Integrated Windows Authentication is enabled. Basic Authentication is enabled. Allow REMOTE_USER authentication is enabled in the repository. Yeah. The Fossil clone client-side still doesn't know how to do Basic Authentication. Somebody posted a patch to fix this a week or two ago. I was going to look into that, but I it just hasn't come up on my queue yet. If I run Fossil in server mode on my server: Fossil open \Projects\Test\Test.fossil Fossil.server then I can clone the repository like this: Fossil clone http://myserver:8080/ Test.fossil I captured the exchange: Request: POST /xfer/xfer HTTP/1.0 Host: myserver:8080 User-Agent: Fossil/[1d93222627] Content-Type: application/x-fossil Content-Length: 65 <65 bytes of binary data> Reponse: POST /xfer/xfer HTTP/1.0 Host: myserver:8080 User-Agent: Fossil/[1d93222627] Content-Type: application/x-fossil Content-Length: 267 <data packets> Since I do not see any login information, I assume that authentication is not required for cloning. If I browse the repository, the browser provides authentication to IIS which, in turn, sets REMOTE_USER=tperovic before invoking Fossil via CGI. The result is auto-login based on Windows integrated authentication. I get "Logged on as tperovic" on every Fossil web page. Now, if I try to clone the repository using the IIS/CGI interface, it fails: Fossil clone http://myserver/Projects/Test/Test.fossil Test.fossil Request: POST /Projects/Test/Test.fossil/xfer/xfer HTTP/1.0 Host: vserver1 User-Agent: Fossil/[1d93222627] Content-Type: application/x-fossil Content-Length: 63 Media Type: application/x-fossil (63 bytes) Reponse: HTTP/1.1 401 Unauthorized Content-Length: 1539 Content-Type: text/html Server: Microsoft-IIS/6.0 WWW-Authenticate: Negotiate WWW-Authenticate: NTLM WWW-Authenticate: Basic realm="My Domain" Date: Fri, 01 Apr 2011 18:05:16 GMT Connection: close <HTML><HEAD><TITLE>You are not authorized to view this page</TITLE> ... .<h2>HTTP Error 401.2 - Unauthorized: Access is denied due to server configuration.<br>Internet Information Services (IIS)</h2> ... </HTML> Normally, the browser would negotiate the authentication method with IIS. The WWW-Authenticate directives tell the browser which authentication methods are available. Fossil provides no authentication so IIS rejects the request . Thus, I conlude, anonymous access must to be enabled for cloning to work. I would imagine you would have the same issue on Unix/Linux. Is this correct? [cid:image001.jpg@01CBF50B.080CE7E0] TONY PEROVIC tpero...@compumation.com<mailto:tpero...@compumation.com> www.compumation.com<http://www.compumation.com> 205 W. Grand Ave., Ste. 121 Bensenville, IL 60106 630-860-1921<tel:630-860-1921> Phone 630-860-1928<tel:630-860-1928> Fax _______________________________________________ fossil-users mailing list fossil-users@lists.fossil-scm.org<mailto:fossil-users@lists.fossil-scm.org> http://lists.fossil-scm.org:8080/cgi-bin/mailman/listinfo/fossil-users -- D. Richard Hipp d...@sqlite.org<mailto:d...@sqlite.org>
<<inline: image001.jpg>>
_______________________________________________ fossil-users mailing list fossil-users@lists.fossil-scm.org http://lists.fossil-scm.org:8080/cgi-bin/mailman/listinfo/fossil-users
