Kerberos-based HTTP authentication support planed?

Manlio Perillo manlio_perillo at libero.it
Fri Mar 28 11:37:04 CDT 2008


Ezra.Smith at bentley.com ha scritto:
> [...]
>
> Me: Hi server, I'd like to access you!
> 
> Server: 401. Unauthorized. Pick an auth method from: NTLM, Digest, etc.
> *resets connection*
> 
> Me: Hi, I'd like to access you, and I pick NTLM.
> 
> Server: 401. Unauthorized, but I accept your NTLM request. Here's a
> nonce for you to encode. *resets connection*
> 
> Me: Hi, I have the nonce you asked for. Can I access you now?
> 
> Server: 401. Nonce? I never gave you a nonce. Who are you, anyway?
> *resets connection*
> 


This is not a problem caused by the lack of persistent connections.

As an example, with HTTP Digest authentication there are no problems and 
the server needs not to store state (except for enhanced protection).



Manlio Perillo


More information about the Mercurial mailing list