Return-Path: X-Original-To: apmail-couchdb-user-archive@www.apache.org Delivered-To: apmail-couchdb-user-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 7E1E1F54C for ; Tue, 23 Apr 2013 13:26:20 +0000 (UTC) Received: (qmail 97223 invoked by uid 500); 23 Apr 2013 13:26:19 -0000 Delivered-To: apmail-couchdb-user-archive@couchdb.apache.org Received: (qmail 97147 invoked by uid 500); 23 Apr 2013 13:26:18 -0000 Mailing-List: contact user-help@couchdb.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: user@couchdb.apache.org Delivered-To: mailing list user@couchdb.apache.org Received: (qmail 97128 invoked by uid 99); 23 Apr 2013 13:26:18 -0000 Received: from minotaur.apache.org (HELO minotaur.apache.org) (140.211.11.9) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 23 Apr 2013 13:26:18 +0000 Received: from localhost (HELO mail-lb0-f177.google.com) (127.0.0.1) (smtp-auth username rnewson, mechanism plain) by minotaur.apache.org (qpsmtpd/0.29) with ESMTP; Tue, 23 Apr 2013 13:26:17 +0000 Received: by mail-lb0-f177.google.com with SMTP id x10so634187lbi.22 for ; Tue, 23 Apr 2013 06:26:15 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:x-received:in-reply-to:references:date:message-id :subject:from:to:content-type:content-transfer-encoding; bh=aAiYDwKWrbVTkBNAcFqsmdOL+D4NwWuB42DEC0gHp04=; b=SPItIpGh9V/lwebqx72+Pi8gGyXvgEpRnf7BCWoiMcVyIHIFnzMBhgT0IZy+HLhZxj iXf6gVb2oEOjcQFIbD9PNJqa4GXBcU8JO+p6WrZvcAdWaM6GV4pDA1g4NGTNegf13JOe mB+W11GCoqwaGY7W/uz/iq5dMMEZyNMExPC6jcY3sq8xwkqGI5UCKjLL7AAUNvf8CvpD X4WkQTbLdHOmuCkraMUPygX7xO0DY31pcK8YDK+i+QRP7qyenyhGOHWSblesczg2dxoA AKVVgcs3Oyo7T6JC5x9zVYilm4HDTmpREWKzwR2c7dK1XNDOvhrdpERdP9VSQzO5kALa NWZQ== MIME-Version: 1.0 X-Received: by 10.152.26.138 with SMTP id l10mr15813331lag.56.1366723575922; Tue, 23 Apr 2013 06:26:15 -0700 (PDT) Received: by 10.112.168.98 with HTTP; Tue, 23 Apr 2013 06:26:15 -0700 (PDT) In-Reply-To: <20130423161914.2cb09136@svilendobrev.com> References: <20130423141547.7472d36e@svilendobrev.com> <20130423161914.2cb09136@svilendobrev.com> Date: Tue, 23 Apr 2013 14:26:15 +0100 Message-ID: Subject: Re: passwords From: Robert Newson To: "user@couchdb.apache.org" Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: quoted-printable svilen, I don't think that's considered a bug, though. Admins can delete users, users can't delete themselves. We can certainly debate that, but I think our position is that this is intentional. I'm also backporting the configure.ac fix as it makes it hard to run my tes= ts. B. On 23 April 2013 14:19, svilen wrote: > the one of user unable to DELETE itself, from the other day.. > don't know if it has been fixed or not. > > On Tue, 23 Apr 2013 14:14:23 +0100 > Noah Slater wrote: > >> Any other bugs while we're at it. I'll be sending out a formal request >> tonight for people to do merges. But may as well mention it now. >> >> >> On 23 April 2013 14:11, Robert Newson wrote: >> >> > good thought. >> > >> > On 23 April 2013 14:07, Noah Slater wrote: >> > > Can we put this into one or more of the bugfixes branches? >> > > >> > > >> > > On 23 April 2013 14:02, Robert Newson wrote: >> > > >> > >> I believe the fix for this is 5d4ef930 which is on master (which >> > >> will be 1.4) only. >> > >> >> > >> specifically; >> > >> >> > >> - [Name, Pass] =3D re:split(NamePass, ":", [{return, >> > >> list}]), >> > >> + [Name, Pass] =3D re:split(NamePass, ":", [{return, list}, >> > >> {parts, 2}]), >> > >> >> > >> B. >> > >> >> > >> >> > >> >> > >> >> > >> On 23 April 2013 13:59, Robert Newson wrote: >> > >> > Ah, that's a great distinction, rings a bell! >> > >> > >> > >> > On 23 April 2013 13:39, Dave Cottlehuber >> > >> > wrote: >> > >> >> On 23 April 2013 13:15, svilen wrote: >> > >> >>> g'day >> > >> >>> >> > >> >>> i am trying to set a user with a password that is not just >> > >> alphanumeric. >> > >> >>> e.g. "b:@" (or if uri-encoded, b%3A%40) >> > >> >>> >> > >> >>> but the result of getting the /_users/ doc is always >> > 401-unauthorized. >> > >> >>> >> > >> >>> if i login in Futon, it seems to work. >> > >> >>> when i compute the pasword_sha myself and compare to whats in >> > user/doc, >> > >> >>> it matches. >> > >> >>> >> > >> >>> but http via basic authentication won't let me in. >> > >> >>> e.g. >> > >> >>> curl -vX GET >> > >> >>> http://auser:b%3A%40@server:5984/_users/org.couchdb.user%3Aause= r >> > >> >>> >> > >> >>> (seems the subject is very tricky and rarely paid attention >> > >> >>> to in various http libraries i looked recently. Everyone >> > >> >>> just lumps the usr+":"+psw and uri-encoding/decoding is left >> > >> >>> out..) >> > >> >> >> > >> >> Hi Svilen, >> > >> >> >> > >> >> From curl, you can: >> > >> >> >> > >> >> curl -vX GET $COUCH -u tricky:p@sswd >> > >> >> >> > >> >> and leaving off the password field allows you to enter it >> > >> >> manually or even echo ':p@sswd' | curl =85 >> > >> >> >> > >> >> or if you're POSTing I think you can also use this: >> > >> >> http://curl.haxx.se/docs/manpage.html#--data-urlencode >> > >> >> >> > >> >> curl -d name=3Djohn --data-urlencode passwd=3D@31&3*J >> > >> https://www.mysite.com >> > >> >> >> > >> >> Anyway AFAICT there's a bug in CouchDB if the password starts >> > >> >> with a >> > `:` >> > >> >> >> > >> >> $COUCH=3Dhttp://admin:pwd@localhost:5984 >> > >> >> >> > >> >> curl -HContent-Type:application/json \ >> > >> >> -vXPUT $COUCH/_users/org.couchdb.user:mrtricky \ >> > >> >> --data-binary '{"_id": "org.couchdb.user:mrtricky","name": >> > >> >> "mrtricky","roles": [],"type": "user","password": ":pwd"}' >> > >> >> >> > >> >> I would expect that I can subsequently use either curl or >> > >> >> httpie.org >> > , >> > >> >> neither of them succeed with -u mrtricky::pwd or -u mrtricky & >> > getting >> > >> >> password from terminal. >> > >> >> >> > >> >> A+ >> > >> >> Dave >> > >> >> > > >> > > >> > > >> > > -- >> > > NS >> > >> >> >> >> -- >> NS