Univention Bugzilla – Bug 45593
The updater does not automatically retry connections to the repository with credentials when http 401 is returned
Last modified: 2017-10-30 16:06:33 CET
The univention-updater should retry the connection to the repository server by sending the domainuuid / license KeyID if it encounters a http 401 return code when accessing a component. HEAD requests are sent to the repository server, in this example UCS 4.1-4-errata is requiring credentials updater debug: 24.10.17 16:56:44.699 NETWORK ( ALL ) : updater: HEAD http://10.200.29.89/ 24.10.17 16:56:44.703 NETWORK ( ALL ) : updater: HEAD http://10.200.29.89/4.1/ 24.10.17 16:56:44.705 NETWORK ( ALL ) : updater: HEAD http://10.200.29.89/4.1/maintained/component/4.1-4-errata/ 24.10.17 16:56:44.707 NETWORK ( ALL ) : updater: HEAD http://10.200.29.89/4.1/maintained/component/4.1-4-errata/all/Packages.gz 24.10.17 16:56:44.710 NETWORK ( ALL ) : updater: HEAD http://10.200.29.89/univention-repository/ 24.10.17 16:56:44.711 NETWORK ( ALL ) : Error downloading http://10.200.29.89/univention-repository/: 404 apache access.log: 10.200.29.50 - - [24/Oct/2017:16:56:43 +0200] "HEAD /4.1/ HTTP/1.1" 200 150 "-" "UCS (appliance) - 4.1-4 errata478 - 19d2b777-dda0-4d57-9830-cea13d9b4d42 - abe4e534-b868-4783-a4c7-211bea627957 - - U:1a,R:M" 10.200.29.50 - - [24/Oct/2017:16:56:43 +0200] "HEAD /4.1/maintained/component/4.1-4-errata/ HTTP/1.1" 200 150 "-" "UCS (appliance) - 4.1-4 errata478 - 19d2b777-dda0-4d57-9830-cea13d9b4d42 - abe4e534-b868-4783-a4c7-211bea627957 - - U:1a,R:M" 10.200.29.50 - - [24/Oct/2017:16:56:43 +0200] "HEAD /4.1/maintained/component/4.1-4-errata/all/Packages.gz HTTP/1.1" 401 229 "-" "UCS (appliance) - 4.1-4 errata478 - 19d2b777-dda0-4d57-9830-cea13d9b4d42 - abe4e534-b868-4783-a4c7-211bea627957 - - U:1a,R:M" 10.200.29.50 - - [24/Oct/2017:16:56:43 +0200] "HEAD /univention-repository/ HTTP/1.1" 404 163 "-" "UCS (appliance) - 4.1-4 errata478 - 19d2b777-dda0-4d57-9830-cea13d9b4d42 - abe4e534-b868-4783-a4c7-211bea627957 - - U:1a,R:M"
Credentials are only sent when the right "HTTP Simple Auth Real" is used; see Bug #39305 comment 3
verified, nothing to release