11 Replies Latest reply: Feb 5, 2010 2:26 AM by tinylion_uk

Adobe opensource SVN and all the authentication trouble

tinylion_uk Jan 30, 2010 12:15 PM

Has anyone at Adobe looked into this yet.

I know you're busy boys and girls but this is just driving me nuts.

it's the same on all the projects hosted there. no matter what you do, at some point they will just start asking for user/pass. then you need to delete and start over.

Has anyone even got a clue as to why this started happening?

it looks as if at some point in the update the url root is called and thats what triggers the auth request?

Im sure you most likely have other non public repositories on there but couldnt you just put those somewhere else so you can open the root url and stop this from driving me over the edge :-)

really though, it's been going on for a while now and could do with fixing. Im sure if you just make the root url open, in fact so we could just see all the OS projects on there together then the problem would stop. wouldnt it be possible to move anything you dont want the public to see to somewhere thats not on the opensource repository root?

just a thought.

cheers

glenn

1. Re: Adobe opensource SVN and all the authentication trouble

matt_chotin Jan 30, 2010 12:50 PM (in response to tinylion_uk)

The root url guess is new actually, our tests had shown corrupted files which we couldn't figure out. I'll pass the root url idea on.

Matt
Like Show 0 Likes (0)

Actions
2. Re: Adobe opensource SVN and all the authentication trouble

matt_chotin Jan 30, 2010 1:31 PM (in response to tinylion_uk)

Glenn, do you have any logs that show when the auth request is occurring and what files worked before that occurred? Our team is still pretty confused and we seem to not be running into it internally.

Also, does your SVN client support 1.6 (it's not an older client)? Which client are you using?

Matt
Like Show 0 Likes (0)

Actions
3. Re: Adobe opensource SVN and all the authentication trouble

tinylion_uk Jan 31, 2010 2:46 AM (in response to matt_chotin)

I'll have a look

I wonder if the internal team is not having the trouble cus they all have url root access?? Is this the case by any change?'

I have the command line svn from collabnet 1.6.9 (updated whenever they do)

Also sometime use TortoiseSVN 1.6.7.18415(64)

Oh and the root url idea, thats just something pulled right out of left field but please don’t be surprised if it leads you nowhere. :-)

Cheers as always Matt

glenn
Like Show 0 Likes (0)

Actions
4. Re: Adobe opensource SVN and all the authentication trouble

matt_chotin Jan 31, 2010 12:22 PM (in response to tinylion_uk)

You have a sandbox right? Is anyone who doesn't have a sandbox account running into this?
Like Show 0 Likes (0)

Actions
5. Re: Adobe opensource SVN and all the authentication trouble

tinylion_uk Jan 31, 2010 2:09 PM (in response to matt_chotin)

I'll have a look

I wonder if the internal team is not having the trouble cus they all have url root access?? Is this the case by any change?

tinylion development & design
Like Show 0 Likes (0)

Actions
6. Re: Adobe opensource SVN and all the authentication trouble

matt_chotin Jan 31, 2010 2:36 PM (in response to tinylion_uk)

It's possible, I don't know exactly how the svn groups are set up.
Like Show 0 Likes (0)

Actions
7. Re: Adobe opensource SVN and all the authentication trouble

tinylion_uk Feb 1, 2010 12:21 AM (in response to matt_chotin)

Hi again

I have some upload right, for patches etc but as yet I've not created a sandbox. I do have a registered username and pass to do so though. Using that with the trouble does not auth.

Thanks mate

tinylion development & design
Like Show 0 Likes (0)

Actions
8. Re: Adobe opensource SVN and all the authentication trouble

Daniil Tutubalin Feb 4, 2010 11:26 AM (in response to tinylion_uk)

I was trying to update flex/sdk/trunk, and i got authorization request.
I run sniffer to find out what happened.
Sniffer showed:

Request:

OPTIONS /svn/opensource HTTP/1.1
Host: opensource.adobe.com
User-Agent: SVN/1.6.2 (r37639)/TortoiseSVN-1.6.2.16344 neon/0.28.4
Keep-Alive:
Connection: TE, Keep-Alive
TE: trailers
Content-Type: text/xml
DAV: http://subversion.tigris.org/xmlns/dav/svn/depth
DAV: http://subversion.tigris.org/xmlns/dav/svn/mergeinfo
DAV: http://subversion.tigris.org/xmlns/dav/svn/log-revprops
Content-Length: 104
Authorization: Basic Og==

<?xml version="1.0" encoding="utf-8"?><D:options xmlns:D="DAV:"><D:activity-collection-set/></D:options>

Response:

HTTP/1.1 401 Authorization Required
Date: Thu, 04 Feb 2010 19:19:06 GMT
Server: Apache
WWW-Authenticate: Basic realm="Opensource Subversion Repository"
Content-Length: 471
Content-Type: text/html; charset=iso-8859-1
Cache-Control: max-age=900
Expires: Thu, 04 Feb 2010 19:34:06 GMT

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>401 Authorization Required</title>
</head><body>
<h1>Authorization Required</h1>
<p>This server could not verify that you
are authorized to access the document
requested. Either you supplied the wrong
credentials (e.g., bad password), or your
browser doesn't understand how to supply
the credentials required.</p>
<hr>
<address>Apache Server at opensource.adobe.com Port 80</address>
</body></html>
Like Show 0 Likes (0)

Actions
9. Re: Adobe opensource SVN and all the authentication trouble

matt_chotin Feb 4, 2010 11:50 AM (in response to Daniil Tutubalin)

Very helpful I hope, I will pass this on the to the eng team.
Like Show 0 Likes (0)

Actions
10. Re: Adobe opensource SVN and all the authentication trouble

matt_chotin Feb 4, 2010 2:53 PM (in response to Daniil Tutubalin)

Hey guys,

I think I may have finally figured out what's going on. Unfortunately, it's a huge nasty bug in Subversion. http://subversion.tigris.org/issues/show_bug.cgi?id=3242

Basically SVN for some reason goes up to the root to find out certain things like OPTIONS and PROPFIND and we don't allow access to the root. Glenn asked before whether our username/passwords have root access, and I think within Adobe they do.

SO...

We have to figure out if it's OK to allow the client to basically see what's going on at the root and then deny access further down, or what.

This is going to take some more time, but now we at least have a path...

Matt
Like Show 0 Likes (0)

Actions
11. Re: Adobe opensource SVN and all the authentication trouble

tinylion_uk Feb 5, 2010 2:26 AM (in response to matt_chotin)

great news. at least we all know what the problem is.

LOL, ok here's my easy answer. just give me root access, now of course i promise i wouldn't go checking out anything that suddenly started to show up in the projects directory. I'd just slide right past them and be a good boy. of course ;-)

well finding the problem is always 4/5th of the effort. so well done.

g
Like Show 0 Likes (0)

Actions