Our internal SVN server runs Apache and uses mod_auth_sspi to support NTLM authentication. It also supports Basic authentication as a fallback (I understand this combination is somewhat common).
Unfortunately I cannot branch an SVN repository from this server using Bazaar because Bazaar chokes on receiving an HTTP 401 with WWW-Authenticate: NTLM. Bazaar gets as far as attempting to POST to .bzr/smart and GET from .bzr/branch-format before giving up:
bzr: ERROR: Invalid http response for http://svn.example.org/svn/example/trunk/example/.bzr/branch-format: Unable to handle http code 401: Authorization Required
I suggest attempting Basic authentication as a fallback if NTLM is offered. I’m reporting this as a Bazaar bug rather than a bzr-svn bug because the problem seems to be with Bazaar itself.
This is related to bug #244879 except that bug is requesting NTLM support, whereas I am suggesting using Basic as a fallback in the meantime (or if NTLM fails).
On Fri, 2009-04-24 at 14:02 +0000, Daniel Cassidy wrote:
>
>
> I suggest attempting Basic authentication as a fallback if NTLM is
> offered. I’m reporting this as a Bazaar bug rather than a bzr-svn bug
> because the problem seems to be with Bazaar itself.
Its up to web servers to list what authentication methods they support -
if your server lists basic as a supported means, and bzr is bugfree in
this regard :P, then we would use it.
However, I suspect the issue here is unrelated to NTLM vs Basic -
however, Vincent knows our http stack's issue rather better than I, so
I'll let him comment further.
-Rob