On Thu, Aug 26, 2021 at 04:08:34PM -0400, Nathan Hartman wrote:
> On Thu, Aug 26, 2021 at 6:30 AM Stefan Sperling wrote:
> > One consequence is that when Alice mistypes the --username option, or
> > mistypes the username or password at the prompt, invalid credentials will
> > be cached. Which shou
On Thu, Aug 26, 2021 at 6:30 AM Stefan Sperling wrote:
> One consequence is that when Alice mistypes the --username option, or
> mistypes the username or password at the prompt, invalid credentials will
> be cached. Which should make any regular SVN operation fail and ask for
> credentials again.
On 2021-08-25 19:18:49 -0400, Nathan Hartman wrote:
> I don't see mention of it in the issue tracker. Please could you file
> it there?
Done: https://issues.apache.org/jira/browse/SVN-4879
> I started looking into it but ran out of time for now. Anyway, SIGPIPE
> is ignored throughout the client,
On Thu, Aug 26, 2021 at 4:31 PM Daniel Shahaf wrote:
>
> Johan Corveleyn wrote on Thu, 26 Aug 2021 12:41 +00:00:
> > On Wed, Aug 25, 2021 at 8:52 PM Daniel Shahaf
> > wrote:
> > > This thread is on dev@ as opposed to users@, so I'm trying to solve the
> > > problem generically, rather than just
Daniel Sahlberg wrote on Thu, Aug 26, 2021 at 14:44:04 +0200:
> Den lör 21 aug. 2021 kl 05:18 skrev Daniel Shahaf :
>
> > Daniel Sahlberg wrote on Fri, 20 Aug 2021 10:30 +00:00:
> > > Den fre 20 aug. 2021 kl 12:11 skrev Daniel Shahaf <
> > d...@daniel.shahaf.name>:
> > > > Daniel Sahlberg wrote on
Johan Corveleyn wrote on Thu, 26 Aug 2021 12:41 +00:00:
> On Wed, Aug 25, 2021 at 8:52 PM Daniel Shahaf wrote:
> > This thread is on dev@ as opposed to users@, so I'm trying to solve the
> > problem generically, rather than just your specific $WORK scenario.
>
> I get the feeling I'm missing some
Branko Čibej wrote on Thu, 26 Aug 2021 12:49 +00:00:
> On 26.08.2021 14:10, Daniel Shahaf wrote:
> > Branko Čibej wrote on Thu, 26 Aug 2021 08:11 +00:00:
> >> On 25.08.2021 21:01, Mark Phippard wrote:
> >>> Solving with svn auth is a nice idea but I do not see it working
> >>> unless we have a way
On Thu, Aug 26, 2021 at 04:17:16PM +0200, Daniel Sahlberg wrote:
> Den tors 26 aug. 2021 kl 16:10 skrev Stefan Sperling :
>
> > On Thu, Aug 26, 2021 at 02:41:44PM +0200, Johan Corveleyn wrote:
> > > I get the feeling I'm missing something, but I still don't understand
> > > what authz has to do wi
Den tors 26 aug. 2021 kl 16:10 skrev Stefan Sperling :
> On Thu, Aug 26, 2021 at 02:41:44PM +0200, Johan Corveleyn wrote:
> > I get the feeling I'm missing something, but I still don't understand
> > what authz has to do with the problem at hand here (i.e. detecting
> > expired passwords so we can
On Thu, Aug 26, 2021 at 12:15:39PM +, Daniel Shahaf wrote:
> Stefan Sperling wrote on Thu, 26 Aug 2021 10:30 +00:00:
> > And while we are considering read-only vs. read-write access:
> > Plaintext passwords or not, in my contrived scenario Eve could always
> > trick Alice into using a different
On Thu, Aug 26, 2021 at 02:41:44PM +0200, Johan Corveleyn wrote:
> I get the feeling I'm missing something, but I still don't understand
> what authz has to do with the problem at hand here (i.e. detecting
> expired passwords so we can ask the user for the new one).
The problem is that some reposi
On Thu, Aug 26, 2021 at 6:30 AM Stefan Sperling wrote:
> The answer might be that 'svn authz add' should simply not contact the
> server to check credentials. Which means we cannot check upfront whether
> the user running 'svn auth add' knows valid credentials.
Yeah that seems reasonable. Basica
On 26.08.2021 14:10, Daniel Shahaf wrote:
Branko Čibej wrote on Thu, 26 Aug 2021 08:11 +00:00:
On 25.08.2021 21:01, Mark Phippard wrote:
Solving with svn auth is a nice idea but I do not see it working
unless we have a way to authenticate for write access without writing
something.
There isn't
Den lör 21 aug. 2021 kl 05:18 skrev Daniel Shahaf :
> Daniel Sahlberg wrote on Fri, 20 Aug 2021 10:30 +00:00:
> > Den fre 20 aug. 2021 kl 12:11 skrev Daniel Shahaf <
> d...@daniel.shahaf.name>:
> > > Daniel Sahlberg wrote on Thu, Aug 19, 2021 at 23:23:49 +0200:
> > > > [[[
> > > ⋮
> > > >
> -
On Wed, Aug 25, 2021 at 8:52 PM Daniel Shahaf wrote:
> Johan Corveleyn wrote on Wed, 25 Aug 2021 07:16 +00:00:
> > On Tue, Aug 24, 2021 at 7:03 PM Daniel Shahaf
> > wrote:
> > > Johan Corveleyn wrote on Tue, 24 Aug 2021 15:22 +00:00:
> > > > On Tue, Aug 24, 2021 at 4:45 PM Daniel Shahaf
> > >
Stefan Sperling wrote on Thu, 26 Aug 2021 10:30 +00:00:
> And while we are considering read-only vs. read-write access:
> Plaintext passwords or not, in my contrived scenario Eve could always
> trick Alice into using a different user account by caching a set of
> valid credentials which Eve knows.
Branko Čibej wrote on Thu, 26 Aug 2021 08:11 +00:00:
> On 25.08.2021 21:01, Mark Phippard wrote:
> > Solving with svn auth is a nice idea but I do not see it working
> > unless we have a way to authenticate for write access without writing
> > something.
>
> There isn't in general, since authz can
On Thu, Aug 26, 2021 at 10:11:44AM +0200, Branko Čibej wrote:
> On 25.08.2021 21:01, Mark Phippard wrote:
> > On Wed, Aug 25, 2021 at 3:16 AM Johan Corveleyn wrote:
> >
> > > > Is there a way to test whether one has rw access without actually doing
> > > > a commit or a revprop edit? It's possib
On 25.08.2021 21:01, Mark Phippard wrote:
On Wed, Aug 25, 2021 at 3:16 AM Johan Corveleyn wrote:
Is there a way to test whether one has rw access without actually doing
a commit or a revprop edit? It's possible with hooks, of course, but is
it also possible without hooks?
I'm not sure I unde
19 matches
Mail list logo
