[jira] Commented: (CONTINUUM-2272) Able to add secured projects without credentials

Sun, 21 Jun 2009 17:38:47 -0700 

    [ 
http://jira.codehaus.org/browse/CONTINUUM-2272?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=181041#action_181041
 ] 

Maria Catherine Tan commented on CONTINUUM-2272:
------------------------------------------------

> In step1, where do you get the error
when continuum tries to retrieve the pom.

> In step 2, what does Continuum do with the credentials?
just like you said, and store it in the database if not 'use scm credentials 
cache'

> In step 4, what part succeeds that you think should fail?
when it tries to retrieve the pom using HTTP GET

In step 4
Q1. No
Q2. No
Q3. No. I tried adding the same project using a newly created user.
Q4. No (I don't think CONTINUUM-2251 is a bug)

In my opinion, this is not related to subversion at all but to the HttpClient. 
When I restarted continuum, and do step 1 again, I will still get the 
authentication error when trying to add a project without credentials.

So what I did is to clear the credentials from the HttpClient everytime we try 
to add a project, which does not affect svn credentials caching.


> Able to add secured projects without credentials
> ------------------------------------------------
>
>                 Key: CONTINUUM-2272
>                 URL: http://jira.codehaus.org/browse/CONTINUUM-2272
>             Project: Continuum
>          Issue Type: Bug
>          Components: Core system
>    Affects Versions: 1.2
>            Reporter: Maria Catherine Tan
>            Assignee: Maria Catherine Tan
>             Fix For: 1.3.4
>
>
> 1. add a secured project without entering any credentials and do not click 
> 'use scm credentials'
> 2. click add button
> --> Will have an authorization error while trying to add the project
> 3. Repeat steps above but this time with credentials
> --> Successfully added the project
> 4. Repeat steps #1&2 but this time choose a different group (continuum does 
> not allow adding the same project to the same group)
> --> Successfully added the project
> #4 should still show an authorization error instead of successfully adding 
> the project.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: 
http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

Reply via email to