1. 24 Jan, 2020 1 commit
    • http: send probe packets · 76fd406a
      When we're authenticating with a connection-based authentication scheme
      (NTLM, Negotiate), we need to make sure that we're still connected
      between the initial GET where we did the authentication and the POST
      that we're about to send.  Our keep-alive session may have not kept
      alive, but more likely, some servers do not authenticate the entire
      keep-alive connection and may have "forgotten" that we were
      authenticated, namely Apache and nginx.
      
      Send a "probe" packet, that is an HTTP POST request to the upload-pack
      or receive-pack endpoint, that consists of an empty git pkt ("0000").
      If we're authenticated, we'll get a 200 back.  If we're not, we'll get a
      401 back, and then we'll resend that probe packet with the first step of
      our authentication (asking to start authentication with the given
      scheme).  We expect _yet another_ 401 back, with the authentication
      challenge.
      
      Finally, we will send our authentication response with the actual POST
      data.  This will allow us to authenticate without draining the POST data
      in the initial request that gets us a 401.
      Edward Thomson committed
  2. 10 Jun, 2019 1 commit