Re: [Zope-PAS] Basic auth/challenge problem
That's right, PAS isn't challenging the client. I dug a little further, and it seems that ChallengeProtocolChooser's protocol mapping doesn't include {'Browser':['http']} (it only has keys 'WebDAV', 'FTP', 'XML-RPC'). If I stick that mapping in manually, the second request authenticates (the first request, as you say, doesn't interact with PAS at all). So, at a high level, what am I missing such that that protocol mapping isn't in there? My active plugins: Extraction Plugins: basicAuthHelper cookieAuthHelper Authentication: userManager Challenge: basicAuthHelper Challenge_Protocol_Chooser: protocolChooser Request_Type_Sniffer: requestTypeSniffer --Ian On Jun 12, 2009, at 9:17 AM, Willi Langenberger wrote: > According to Ian McCracken: >> For example, I'm doing: >> >> wget --user myuser --password mypassword http://localhost:8080/path/to/thing >> >> I threw a breakpoint in ZPublisher/HTTPRequest.py:275 to see what >> auth >> information was in the request environment; there is none. I also >> tried wget http://user:p...@localhost:8080/, just for kicks, but of >> course the same problem. > > Hm. What is the exact output from > > wget -S --user myuser --password mypass http://localhost:8080/path/to/thing > > in both cases (2.8.8/1.4 and 2.11.2/1.5.3) ? > > As far as I know, wget doesnt send the credentials on the first > request. Instead, it sends them only if it gets a 401 ("authorization > required") response. > > So it could be perfectly ok that you see no auth data at the > HTTPRequest breakpoint (if it is the first request). BTW, i think at > the > time your breakpoint is hit, there was no interaction with PAS. > > It seems, that your PAS doesnt challenge the client with a 401 > response. > > Have you activated the PAS "challenge plugin"? > > > \wlang{} > > -- > willi.langenber...@wu.ac.at Fax: +43/1/31336/9207 > IT-Services, WU Wirtschaftsuniversitaet Wien, Austria ___ Zope-PAS mailing list Zope-PAS@zope.org http://mail.zope.org/mailman/listinfo/zope-pas
Re: [Zope-PAS] Basic auth/challenge problem
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Jun 12, 2009, at 07:40 , Ian McCracken wrote: > Recently upgraded from PAS 1.4 to 1.5.3 (and Zope 2.8.8 to 2.11.2). > I'm having a new problem with basic auth; namely, that basic auth > information is ignored when using wget. Browsers work fine, ZMI asks > for basic auth creds. wget (and lynx, for that matter) doesn't. I don't know what kinds of plugins you're using, but this works perfectly fine for me on Zope 2.11.3 with PAS 1.6.1 when I instantiate the most basic set of plugins possible and activate them. This set of plugins include a Basic Auth Helper, a ZODB User Manager, and a ZODB Role Manager. jens -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.8 (Darwin) iEYEARECAAYFAkoyTYkACgkQRAx5nvEhZLIWQQCghpUpsCt2uXgBXWLAz1MerPlr IJ0AoJZbw4qvi6ZiRqGyuYeew3Mu+S4L =NOk8 -END PGP SIGNATURE- ___ Zope-PAS mailing list Zope-PAS@zope.org http://mail.zope.org/mailman/listinfo/zope-pas
[Zope-PAS] Basic auth/challenge problem
Recently upgraded from PAS 1.4 to 1.5.3 (and Zope 2.8.8 to 2.11.2). I'm having a new problem with basic auth; namely, that basic auth information is ignored when using wget. Browsers work fine, ZMI asks for basic auth creds. wget (and lynx, for that matter) doesn't. For example, I'm doing: wget --user myuser --password mypassword http://localhost:8080/path/to/thing I threw a breakpoint in ZPublisher/HTTPRequest.py:275 to see what auth information was in the request environment; there is none. I also tried wget http://user:p...@localhost:8080/, just for kicks, but of course the same problem. A key datapoint: it works when I pass the --no-auth-challenge option to wget. For all intents and purposes, this is a vanilla install of PAS and Zope. The plugins that are active appear identical to a Zope 2.8.8/PAS 1.4 instance that /does/ work. Any ideas? --Ian ___ Zope-PAS mailing list Zope-PAS@zope.org http://mail.zope.org/mailman/listinfo/zope-pas