So, is anonymous access required for cloning even on Unix/Linux? Tony Perovic Compumation, Inc. ________________________________ From: [email protected] [mailto:[email protected]] On Behalf Of Richard Hipp Sent: Thursday, April 07, 2011 9:54 AM To: [email protected] Subject: Re: [fossil-users] Cloning on IIS
On Thu, Apr 7, 2011 at 10:48 AM, Tony Perovic <[email protected]<mailto:[email protected]>> wrote: I'm still having trouble cloning/pulling/pushing on Windows/IIS.... This is my configuration: Anonymous access.in<http://access.in> IIS is disabled. Integrated Windows Authentication is enabled. Basic Authentication is enabled. Allow REMOTE_USER authentication is enabled in the repository. Yeah. The Fossil clone client-side still doesn't know how to do Basic Authentication. Somebody posted a patch to fix this a week or two ago. I was going to look into that, but I it just hasn't come up on my queue yet. If I run Fossil in server mode on my server: Fossil open \Projects\Test\Test.fossil Fossil.server then I can clone the repository like this: Fossil clone http://myserver:8080/ Test.fossil I captured the exchange: Request: POST /xfer/xfer HTTP/1.0 Host: myserver:8080 User-Agent: Fossil/[1d93222627] Content-Type: application/x-fossil Content-Length: 65 <65 bytes of binary data> Reponse: POST /xfer/xfer HTTP/1.0 Host: myserver:8080 User-Agent: Fossil/[1d93222627] Content-Type: application/x-fossil Content-Length: 267 <data packets> Since I do not see any login information, I assume that authentication is not required for cloning. If I browse the repository, the browser provides authentication to IIS which, in turn, sets REMOTE_USER=tperovic before invoking Fossil via CGI. The result is auto-login based on Windows integrated authentication. I get "Logged on as tperovic" on every Fossil web page. Now, if I try to clone the repository using the IIS/CGI interface, it fails: Fossil clone http://myserver/Projects/Test/Test.fossil Test.fossil Request: POST /Projects/Test/Test.fossil/xfer/xfer HTTP/1.0 Host: vserver1 User-Agent: Fossil/[1d93222627] Content-Type: application/x-fossil Content-Length: 63 Media Type: application/x-fossil (63 bytes) Reponse: HTTP/1.1 401 Unauthorized Content-Length: 1539 Content-Type: text/html Server: Microsoft-IIS/6.0 WWW-Authenticate: Negotiate WWW-Authenticate: NTLM WWW-Authenticate: Basic realm="My Domain" Date: Fri, 01 Apr 2011 18:05:16 GMT Connection: close <HTML><HEAD><TITLE>You are not authorized to view this page</TITLE> ... .<h2>HTTP Error 401.2 - Unauthorized: Access is denied due to server configuration.<br>Internet Information Services (IIS)</h2> ... </HTML> Normally, the browser would negotiate the authentication method with IIS. The WWW-Authenticate directives tell the browser which authentication methods are available. Fossil provides no authentication so IIS rejects the request . Thus, I conlude, anonymous access must to be enabled for cloning to work. I would imagine you would have the same issue on Unix/Linux. Is this correct? [cid:[email protected]] TONY PEROVIC [email protected]<mailto:[email protected]> www.compumation.com<http://www.compumation.com> 205 W. Grand Ave., Ste. 121 Bensenville, IL 60106 630-860-1921<tel:630-860-1921> Phone 630-860-1928<tel:630-860-1928> Fax _______________________________________________ fossil-users mailing list [email protected]<mailto:[email protected]> http://lists.fossil-scm.org:8080/cgi-bin/mailman/listinfo/fossil-users -- D. Richard Hipp [email protected]<mailto:[email protected]>
<<inline: image001.jpg>>
_______________________________________________ fossil-users mailing list [email protected] http://lists.fossil-scm.org:8080/cgi-bin/mailman/listinfo/fossil-users
