summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorLibravatar David Turner <dturner@twosigma.com>2016-10-04 10:53:52 -0400
committerLibravatar Junio C Hamano <gitster@pobox.com>2016-10-04 12:02:00 -0700
commit5275c3081c2b2c6166a2fc6b253a3acb20f8ae89 (patch)
treed470eeced10399672015dc9f561536dab728a8e0
parentPrepare for 2.10.1 (diff)
downloadtgif-5275c3081c2b2c6166a2fc6b253a3acb20f8ae89.tar.xz
http: http.emptyauth should allow empty (not just NULL) usernames
When using Kerberos authentication with newer versions of libcurl, CURLOPT_USERPWD must be set to a value, even if it is an empty value. The value is never sent to the server. Previous versions of libcurl did not require this variable to be set. One way that some users express the empty username/password is http://:@gitserver.example.com, which http.emptyauth was designed to support. Another, equivalent, URL is http://@gitserver.example.com. The latter leads to a username of zero-length, rather than a NULL username, but CURLOPT_USERPWD still needs to be set (if http.emptyauth is set). Do so. Signed-off-by: David Turner <dturner@twosigma.com> Signed-off-by: Junio C Hamano <gitster@pobox.com>
-rw-r--r--http.c2
1 files changed, 1 insertions, 1 deletions
diff --git a/http.c b/http.c
index 82ed542690..bd0dba23a0 100644
--- a/http.c
+++ b/http.c
@@ -351,7 +351,7 @@ static int http_options(const char *var, const char *value, void *cb)
static void init_curl_http_auth(CURL *result)
{
- if (!http_auth.username) {
+ if (!http_auth.username || !*http_auth.username) {
if (curl_empty_auth)
curl_easy_setopt(result, CURLOPT_USERPWD, ":");
return;