On 5/10/2010 3:29 AM, Levente Uzonyi wrote:
> On Mon, 10 May 2010, Alexander Lazarević wrote:
>>
>> GET /trunk/?C=M;O=D HTTP/1.1
>> User-Agent: Squeak4.1alpha-10129
>> Authorization: Basic xxxxxxxxxxxxxx
>
> If that's your real password, you better change it. ;)

BTW, does anyone know how to fix this problem? The issue can be 
illustrated like this: When having a private repository (global: no 
access) Squeaksource does not respond with a 401 when trying to read it. 
Instead, it returns an empty listing:

   WebClient httpGet: 'http://www.squeaksource.com/Secret/'

On the other hand, when you try to put data into the server, it does 
respond correctly with a 401:

   WebClient
	httpPut: 'http://www.squeaksource.com/Secret/test'
	content: 'foo' type: 'text/plain'.

Because the initial get doesn't properly respond with a 401 the client 
is *forced* to send the initials upfront with basic authentication. 
Otherwise there'd be no need to use basic auth.

Any ideas anyone? There must be a way by which the get can be protected 
like the put operation.

Cheers,
   - Andreas