Thank you -----Ursprüngliche Nachricht----- Von: [email protected] [mailto:[email protected]] Im Auftrag von Hussein Shafie Gesendet: Dienstag, 9. August 2011 17:17 An: Marc Haemmerle Cc: '[email protected]' Betreff: Re: [XXE] XXE and Subversion
On 08/09/2011 04:44 PM, Marc Haemmerle wrote: > Thank you for your reply. > I would appreciate to get the "WebDAV virtual drive plug-in" with the bug fix. > So we can save directly to our subversion repository before september. > OK, we'll try to release he "WebDAV virtual drive plug-in" v2.1.3 in the next few days. We'll post an email to this mailing list (with CC: [email protected]) as soon as the add-on is available. > Kind regards, Marc Haemmerle > > > -----Ursprüngliche Nachricht----- > Von: [email protected] > [mailto:[email protected]] Im Auftrag von Hussein Shafie > Gesendet: Dienstag, 9. August 2011 16:18 > An: '[email protected]' > Betreff: Re: [XXE] XXE and Subversion > > M. Haemmerle wrote: >> I tried Apache httpd mod_dav. >> At first I used the following configuration: >> >> **************************************************************** >> LoadModule dav_module modules/mod_dav.so >> LoadModule dav_fs_module modules/mod_dav_fs.so >> LoadModule dav_lock_module modules/mod_dav_lock.so >> DavLockDB "C:/zzz" >> >> Alias "/ddd" "C:/www" >> >> <Directory C:/www> >> Dav on >> >> AuthType Basic >> AuthName "My WebDAV" >> AuthUserFile "C:/xxx/htpasswd" >> AuthGroupFile "C:/yyy/htgroup" >> >> Require valid-user >> >> AllowOverride None >> >> Options Indexes >> >> Order allow,deny >> Allow from all >> </Directory> >> **************************************************************** >> >> That worked well. >> But I didn't want users to authenticate for reading files. >> Thats why I changed the config as follows: >> >> **************************************************************** >> Require valid-user >> **************************************************************** >> To >> **************************************************************** >> <LimitExcept GET OPTIONS POST PROPFIND> >> Require valid-user >> </LimitExcept> >> **************************************************************** >> >> After restarting apache and xxe I get the same error again. > > With the above information, I easily managed to reproduce the behavior > you describe. > > > >> Can you please tell me how to solve that problem. >> What can I do so XXE asks me for my login credentials when i save (using the >> PUT-Method)? >> We have a lot of users that view files in our repository without having a >> username and password for authentication. >> > > It's an obscure, design bug in our WebDAV client library > (http://www.xmlmind.com/davclient.shtml). > > This bug is now fixed in our development version of XXE v5 (expected at > the end of September). > > If you are currently using XXE v4.9.1 and cannot wait for XXE v5 to be > released, we can backport the bug fix to the addon called "WebDAV > virtual drive plug-in" (see > http://www.xmlmind.com/xmleditor/addons_doc.html#dav_vdrive). Current > add-on is v2.1.2. The bug fix would be found in v2.1.3. -- XMLmind XML Editor Support List [email protected] http://www.xmlmind.com/mailman/listinfo/xmleditor-support -- XMLmind XML Editor Support List [email protected] http://www.xmlmind.com/mailman/listinfo/xmleditor-support
