Comment 24 for bug 82086

>>>>> "john" == John A Meinel <email address hidden> writes:

    john> James Westby wrote:
    >> On Thu, 2008-07-10 at 20:36 +0000, weswinham wrote:
    >>> Our development server uses a self-signed certificate with bzr+https
    >>> using HTTP Digest authentication to limit access. I can't find a way
    >>> around this bug to get things to work. The only thing I can think of
    >>> would be to grab our self-signed cert and distribute it to all of the
    >>> developers, that's much more of a pain than an option like
    >>> --no_check_certificate that wget uses.
    >>
    >> One possible workaround is to install pycurl, or to use urllib+ with
    >> the URLs to avoid pycurl's check.
    >>
    >> Thanks,
    >>
    >> James
    >>

    john> Except I think urllib doesn't handle HTTP Digest, only Plain. I could be
    john> wrong, though.

urllib handles digest.

use http[s]+urllib, not the other way around (bzr don't understand urllib+http).

There *are* plans to implement an option disabling certificate checking.

Currently either you use pycurl and certificates are checked or
you use urllib and they aren't.

Regarding the 401 errors, you must specify at least the user in
the url (or configure your authentication.conf file to provide it
for you).