[cups.bugs] [HIGH] STR #2606: repost from admin.cgi breaks with negotiate

Klas Lindfors klas.lindfors at it.su.se
Tue Nov 20 07:38:16 PST 2007


DO NOT REPLY TO THIS MESSAGE.  INSTEAD, POST ANY RESPONSES TO THE LINK BELOW.

[STR New]

We're seeing a problem with 1.3.4 and using negotiate for the admin
location, setting a printer in accept/reject or stopping/starting breaks
with a 401.

To me it looks like the if clause on line 2004 in auth.c needs to handle
the case of local authorization.


parts of a debug2 log:
D [19/Nov/2007:08:08:59 +0100] cupsdAuthorize: Authorized as kllin at SU.SE
using Local
d [19/Nov/2007:08:08:59 +0100] cupsdIsAuthorized: con->uri="/admin/",
con->best=0x80a7ee0(/admin)
d [19/Nov/2007:08:08:59 +0100] cupsdIsAuthorized: level=AUTH_USER,
type=Negotiate, satisfy=AUTH_SATISFY_ANY, num_names=1
d [19/Nov/2007:08:08:59 +0100] cupsdIsAuthorized: auth=AUTH_ALLOW...
D [19/Nov/2007:08:08:59 +0100] cupsdIsAuthorized: username="kllin at SU.SE"
E [19/Nov/2007:08:08:59 +0100] Authorized using Basic, expected Negotiate!
d [19/Nov/2007:08:08:42 +0100] cupsdReadClient: Unauthorized request for
/admin/
D [19/Nov/2007:08:08:42 +0100] cupsdSendError: 13 code=401 (Unauthorized)
D [19/Nov/2007:08:08:42 +0100] cupsdSendHeader: WWW-Authenticate:
Negotiate

relevant parts of cupsd.conf:
DefaultAuthType Negotiate
<Location /admin>
AuthType Default
Encryption Required
Require user @SYSTEM
</Location>

Link: http://www.cups.org/str.php?L2606
Version: 1.3.4





More information about the cups-devel mailing list