diff options
author | brian m. carlson <sandals@crustytoothpaste.net> | 2015-01-08 00:29:20 +0000 |
---|---|---|
committer | Junio C Hamano <gitster@pobox.com> | 2015-01-07 19:48:19 -0800 |
commit | 4dbe66464b4fd695c5989cc272fa0edd6475037c (patch) | |
tree | a13458252b8ca2b9f40ceccd9f57eed2c2465c41 /http-walker.c | |
parent | Merge branch 'maint-2.1' into maint (diff) | |
download | tgif-4dbe66464b4fd695c5989cc272fa0edd6475037c.tar.xz |
remote-curl: fall back to Basic auth if Negotiate fails
Apache servers using mod_auth_kerb can be configured to allow the user
to authenticate either using Negotiate (using the Kerberos ticket) or
Basic authentication (using the Kerberos password). Often, one will
want to use Negotiate authentication if it is available, but fall back
to Basic authentication if the ticket is missing or expired.
However, libcurl will try very hard to use something other than Basic
auth, even over HTTPS. If Basic and something else are offered, libcurl
will never attempt to use Basic, even if the other option fails.
Teach the HTTP client code to stop trying authentication mechanisms that
don't use a password (currently Negotiate) after the first failure,
since if they failed the first time, they will never succeed.
Signed-off-by: brian m. carlson <sandals@crustytoothpaste.net>
Signed-off-by: Jeff King <peff@peff.net>
Signed-off-by: Junio C Hamano <gitster@pobox.com>
Diffstat (limited to 'http-walker.c')
0 files changed, 0 insertions, 0 deletions