Password protected directories on http server can only be accessed by specifying the password in the URL
Bug #44647 reported by
Nicholas Allen
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Bazaar |
Fix Released
|
Medium
|
Vincent Ladeuil | ||
Bug Description
I have a bzr repository that I have pushed to my http sever via the sftp protocol. The directory that I pushed the repository to is protected from being read by the general public through an htpasswd file. When I try to branch from the http server I expected that I would be asked for a password and user name but instead I just got the message:
bzr: ERROR: http error 401 probing for XXXX/.bzr/
If I specify the user name and password as part of the URL then the branch command works but this is insecure and I would rather not do it this way.
Related branches
lp:~bzr/bzr/bzr.urllib.keepalive
(Merged)
Revision history for this message
| John A Meinel (jameinel) wrote | #1 |
| Changed in bzr: | |
| status: | Unconfirmed → Confirmed |
Revision history for this message
| Vincent Ladeuil (vila) wrote | #2 |
| Changed in bzr: | |
| assignee: | nobody → v-ladeuil |
Revision history for this message
| Vincent Ladeuil (vila) wrote | #3 |
| Changed in bzr: | |
| status: | Confirmed → In Progress |
| Changed in bzr: | |
| status: | In Progress → Fix Committed |
| Changed in bzr: | |
| status: | Fix Committed → Fix Released |
To post a comment you must log in.
This should be true when using pycurl, as we haven't figured out how to request passwords properly there.
Using 'bzr get http+urllib://' should properly prompt for a password. Can you verify whether this works or not?
Alternatively, you may need to specify the username without the password to get a prompt.