[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Questions on pserver authentication

From: Todd Foster
Subject: Questions on pserver authentication
Date: Fri, 13 May 2005 19:54:06 +0000

I am trying to determine how pserver authentication works. I understand when you do a cvs login that it creates ~/.cvspass file. Therefore, I'm guessing that whenever you are running cvs commands cvs blindly combines the USER from whichever method wins (either using the pserver info found in the local working copy or in the $CVSROOT or in the -d) and uses the password from the ~/.cvspass of whoever is running the commands. Is this correct?

So, if user1 goes into a cvs directory created by user2 and tries to do cvs commands in there, it uses the username found in the local working copy (user2) and combines that with ~user1/.cvspass and authentication fails.

One way around that is to override the user explicitly to user1 with the cvs -d option. However, this is a very annoying way to get around the problem.

What I'm really wondering, is what does the pserver authentication do if the username is omitted from the pserver CVSROOT, then what happens? Since it can't determine username from the CVSROOT, does it use the USER who is running the command?

In that scenario, if user1 goes into user2's directory and does a cvs command, since it can't find the username in the pserver information, would it combine user1 with ~user1/.cvspass and work just fine?

If it really works this way, is there any issues/problems with doing this?

Thanks in advance!


reply via email to

[Prev in Thread] Current Thread [Next in Thread]