Return-Path: X-Original-To: apmail-couchdb-user-archive@www.apache.org Delivered-To: apmail-couchdb-user-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 277E41094B for ; Tue, 23 Apr 2013 13:11:36 +0000 (UTC) Received: (qmail 38802 invoked by uid 500); 23 Apr 2013 13:11:34 -0000 Delivered-To: apmail-couchdb-user-archive@couchdb.apache.org Received: (qmail 37795 invoked by uid 500); 23 Apr 2013 13:11:31 -0000 Mailing-List: contact user-help@couchdb.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: user@couchdb.apache.org Delivered-To: mailing list user@couchdb.apache.org Received: (qmail 37757 invoked by uid 99); 23 Apr 2013 13:11:30 -0000 Received: from minotaur.apache.org (HELO minotaur.apache.org) (140.211.11.9) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 23 Apr 2013 13:11:30 +0000 Received: from localhost (HELO mail-lb0-f179.google.com) (127.0.0.1) (smtp-auth username rnewson, mechanism plain) by minotaur.apache.org (qpsmtpd/0.29) with ESMTP; Tue, 23 Apr 2013 13:11:30 +0000 Received: by mail-lb0-f179.google.com with SMTP id t1so631800lbd.10 for ; Tue, 23 Apr 2013 06:11:28 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:x-received:in-reply-to:references:date:message-id :subject:from:to:content-type:content-transfer-encoding; bh=2wZLGPKRuCcChzLM9TK/DFTlZn5vcBsD98lT7U0lmDs=; b=nqji6pfckiNf+U0kDHlZO61jxKYqiWkhSYfD0FpiLwAk71rXptaMmwulWG+xDgDVlh XppZ4VazqVXw5CIDbOUHLfGgCuIsVc17j4kqWI1VeD2yWAJqaNbMrDNsSPCqMeEx9byI +Oi8xUyJvc++IgAu/RiwS5vVl/W2FRsO05nbACOZZhogacPipfDxfjRkHYq3wvKEhSg4 XhlzM0Gj8ICoYJc468Y6qpMUISWmGS+QneUpjAyokx81odhcd35nupyCudJUUSoOprcn cmhpK+BzA9SbUkb695HpMZ5U6uAUM9F7LV35ebvndYjGzfwlJSBwtrVNoBFGa4LA7eM8 7WGw== MIME-Version: 1.0 X-Received: by 10.112.146.34 with SMTP id sz2mr15232259lbb.4.1366722688554; Tue, 23 Apr 2013 06:11:28 -0700 (PDT) Received: by 10.112.168.98 with HTTP; Tue, 23 Apr 2013 06:11:28 -0700 (PDT) In-Reply-To: References: <20130423141547.7472d36e@svilendobrev.com> Date: Tue, 23 Apr 2013 14:11:28 +0100 Message-ID: Subject: Re: passwords From: Robert Newson To: "user@couchdb.apache.org" Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: quoted-printable good thought. On 23 April 2013 14:07, Noah Slater wrote: > Can we put this into one or more of the bugfixes branches? > > > On 23 April 2013 14:02, Robert Newson wrote: > >> I believe the fix for this is 5d4ef930 which is on master (which will >> be 1.4) only. >> >> specifically; >> >> - [Name, Pass] =3D re:split(NamePass, ":", [{return, list}]), >> + [Name, Pass] =3D re:split(NamePass, ":", [{return, list}, {part= s, >> 2}]), >> >> B. >> >> >> >> >> On 23 April 2013 13:59, Robert Newson wrote: >> > Ah, that's a great distinction, rings a bell! >> > >> > On 23 April 2013 13:39, Dave Cottlehuber wrote: >> >> On 23 April 2013 13:15, svilen wrote: >> >>> g'day >> >>> >> >>> i am trying to set a user with a password that is not just >> alphanumeric. >> >>> e.g. "b:@" (or if uri-encoded, b%3A%40) >> >>> >> >>> but the result of getting the /_users/ doc is always 401-unauthorize= d. >> >>> >> >>> if i login in Futon, it seems to work. >> >>> when i compute the pasword_sha myself and compare to whats in user/d= oc, >> >>> it matches. >> >>> >> >>> but http via basic authentication won't let me in. >> >>> e.g. >> >>> curl -vX GET >> >>> http://auser:b%3A%40@server:5984/_users/org.couchdb.user%3Aauser >> >>> >> >>> (seems the subject is very tricky and rarely paid attention to in >> >>> various http libraries i looked recently. Everyone just lumps the >> >>> usr+":"+psw and uri-encoding/decoding is left out..) >> >> >> >> Hi Svilen, >> >> >> >> From curl, you can: >> >> >> >> curl -vX GET $COUCH -u tricky:p@sswd >> >> >> >> and leaving off the password field allows you to enter it manually or >> >> even echo ':p@sswd' | curl =85 >> >> >> >> or if you're POSTing I think you can also use this: >> >> http://curl.haxx.se/docs/manpage.html#--data-urlencode >> >> >> >> curl -d name=3Djohn --data-urlencode passwd=3D@31&3*J >> https://www.mysite.com >> >> >> >> Anyway AFAICT there's a bug in CouchDB if the password starts with a = `:` >> >> >> >> $COUCH=3Dhttp://admin:pwd@localhost:5984 >> >> >> >> curl -HContent-Type:application/json \ >> >> -vXPUT $COUCH/_users/org.couchdb.user:mrtricky \ >> >> --data-binary '{"_id": "org.couchdb.user:mrtricky","name": >> >> "mrtricky","roles": [],"type": "user","password": ":pwd"}' >> >> >> >> I would expect that I can subsequently use either curl or httpie.org, >> >> neither of them succeed with -u mrtricky::pwd or -u mrtricky & gettin= g >> >> password from terminal. >> >> >> >> A+ >> >> Dave >> > > > > -- > NS