subversion-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Apache subversion Wiki <comm...@subversion.apache.org>
Subject [Subversion Wiki] Update of "ServerDictatedConfiguration" by CMichaelPilato
Date Tue, 03 Jan 2012 15:31:59 GMT
Dear Wiki user,

You have subscribed to a wiki page or wiki category on "Subversion Wiki" for change notification.

The "ServerDictatedConfiguration" page has been changed by CMichaelPilato:
http://wiki.apache.org/subversion/ServerDictatedConfiguration?action=diff&rev1=25&rev2=26

   1. The system-wide Registry values (Windows Only)
  
  === Concerns ===
- Most of this idea of server-dictated configuration seems sane.  But there's one bit that
stands out as flatly ridiculous -- the server dictating how the client stores authentication
credentials.  No matter how I look at this, it feels wrong.  Not just wrong, but unique amongst
open source client/server software.  What's more, I'm concerned that by the time any client
would have consulted the server to ask about its configuration, it will have already cached
the very authentication credentials it just used to talk to that server.  ~cmpilato
+ Most of this idea of server-dictated configuration seems sane.  But there's one bit that
stands out -- the server dictating how the client stores authentication credentials.  No matter
how I look at this, it feels wrong.  Not just wrong, but unique amongst the open source client/server
software that I'm familiar with.  Perhaps that's because we're trying to use this server-dictated-configuration
thing as a cheap (as in, two features for the price of one) way to solve the general concern
that some big Subversion-using shops have regarding the need to force Subversion to use EncryptedPasswordStorage
on the client side.  Note that even if we can convince ourselves that this is okay, I'm concerned
that by the time any client would have consulted the server to ask about its configuration,
it will have already cached (in plaintext, perhaps) the very authentication credentials it
just used to talk to that server.  ~cmpilato
  
  === Deferred Goals ===
  As with any long desired feature (issue #1974 is over seven years old) there are differing
opinions on what "Server Dictacted Configuration" should entail.  This section tracks functionality
we are currently ''not ''planning to implement in the first phase -- Obviously this is subject
to change.

Mime
View raw message