WebDAV connection - WinSCP asks for password all the time :: Support Forum

Maks
Joined:: 2021-09-09
Posts:: 8

WebDAV connection - WinSCP asks for password all the time

2021-09-09 21:03

Hi!

I'm trying to connect to the remote server using WebDAV protocol. I put correct hostname, user and password but WinSCP ask for password again and again. If I put wrong password I get exception in the log and WinSCP shows password prompt again. How this can be fixed? Is this an issue on my side?

I'd like to mention that the following issue doesn't happen in Cyberduck.

. 2021-09-13 22:12:42.991 --------------------------------------------------------------------------
. 2021-09-13 22:12:42.991 WinSCP Wersja 5.19.2 (Build 11614) (OS 10.0.19043 - Windows 10 Enterprise N)
. 2021-09-13 22:12:42.991 Configuration: HKCU\Software\Martin Prikryl\WinSCP 2\
. 2021-09-13 22:12:42.991 Log level: Normal
. 2021-09-13 22:12:42.991 Local account: I3-CORE\User
. 2021-09-13 22:12:42.991 Working directory: C:\Program Files (x86)\WinSCP
. 2021-09-13 22:12:42.991 Process ID: 1752
. 2021-09-13 22:12:42.991 Ancestor processes: explorer, ...
. 2021-09-13 22:12:42.991 Command-line: "C:\Program Files (x86)\WinSCP\WinSCP.exe" 
. 2021-09-13 22:12:42.991 Time zone: Current: GMT+2, Standard: GMT+1 (Środkowoeuropejski czas stand.), DST: GMT+2 (Środkowoeuropejski czas letni), DST Start: 28.03.2021, DST End: 31.10.2021
. 2021-09-13 22:12:42.991 Login time: poniedziałek, 13 wrzesień 2021 22:12:42
. 2021-09-13 22:12:42.991 --------------------------------------------------------------------------
. 2021-09-13 22:12:42.991 Session name: username@hostname.com (Site)
. 2021-09-13 22:12:42.991 Host name: hostname.com/webapi/webdav (Port: 443)
. 2021-09-13 22:12:42.991 User name: username (Password: Yes, Key file: No, Passphrase: No)
. 2021-09-13 22:12:42.991 Transfer Protocol: WebDAV
. 2021-09-13 22:12:42.991 Proxy: None
. 2021-09-13 22:12:42.991 HTTPS: Yes [Client certificate: No]
. 2021-09-13 22:12:42.991 WebDAV: Tolerate non-encoded: No
. 2021-09-13 22:12:42.991 TLS/SSL versions: TLSv1.0-TLSv1.3
. 2021-09-13 22:12:42.991 Local directory: default, Remote directory: /webapi/webdav, Update: Yes, Cache: Yes
. 2021-09-13 22:12:42.991 Cache directory changes: Yes, Permanent: Yes
. 2021-09-13 22:12:42.991 Recycle bin: Delete to: No, Overwritten to: No, Bin path: 
. 2021-09-13 22:12:42.991 DST mode: Unix
. 2021-09-13 22:12:42.991 Compression: No
. 2021-09-13 22:12:42.991 --------------------------------------------------------------------------
. 2021-09-13 22:12:43.080 HTTP session to https://hostname.com:443 begins.
. 2021-09-13 22:12:43.112 ssl: SNI enabled by default.
. 2021-09-13 22:12:43.112 ah_create, for WWW-Authenticate
. 2021-09-13 22:12:43.112 Sending request headers:
. 2021-09-13 22:12:43.112 OPTIONS /webapi/webdav:443/webapi/webdav HTTP/1.1
 
. 2021-09-13 22:12:43.112 User-Agent: WinSCP/5.19.2 neon/0.31.2
 
. 2021-09-13 22:12:43.112 Keep-Alive: 
 
. 2021-09-13 22:12:43.112 Connection: TE, Keep-Alive
 
. 2021-09-13 22:12:43.112 TE: trailers
 
. 2021-09-13 22:12:43.112 Host: hostname.com
. 2021-09-13 22:12:43.112 Sending request-line and headers:
. 2021-09-13 22:12:43.112 Doing DNS lookup on hostname.com...
. 2021-09-13 22:12:43.127 req: Connecting to 11.11.111.111:443
. 2021-09-13 22:12:43.141 Doing SSL negotiation.
. 2021-09-13 22:12:43.241 Identity match for 'hostname.com': good
. 2021-09-13 22:12:43.241 Verifying certificate for "*.hostname.com" with fingerprint 04:aa:a6:26:fb:c0:f3:67:f9:d0:b5:df:b0:78:ef:dc:94:3d:fb:3c:7d:82:eb:6e:5f:c1:c1:2a:56:e3:9f:aa and 08 failures
. 2021-09-13 22:12:43.304 Certificate verified against Windows certificate store
. 2021-09-13 22:12:43.304 Using TLSv1.3, cipher TLSv1.3: TLS_AES_256_GCM_SHA384, 2048 bit RSA
. 2021-09-13 22:12:43.304 Request sent; retry is 0.
. 2021-09-13 22:12:43.990 [status-line] < HTTP/1.1 200 OK
. 2021-09-13 22:12:43.990 Header Name: [date], Value: [Mon, 13 Sep 2021 20:12:45 GMT]
. 2021-09-13 22:12:43.990 Header Name: [content-type], Value: [text/html; charset=UTF-8]
. 2021-09-13 22:12:43.990 Header Name: [transfer-encoding], Value: [chunked]
. 2021-09-13 22:12:43.990 Header Name: [connection], Value: [keep-alive]
. 2021-09-13 22:12:43.990 Header Name: [keep-alive], Value: [timeout=20]
. 2021-09-13 22:12:43.990 Header Name: [x-xss-protection], Value: [1]
. 2021-09-13 22:12:43.990 Header Name: [x-powered-by], Value: [DCSaaS]
. 2021-09-13 22:12:43.990 Header Name: [server], Value: [DCSaaS/httpd]
. 2021-09-13 22:12:43.990 Header Name: [x-content-type-options], Value: [nosniff]
. 2021-09-13 22:12:43.990 End of headers.
. 2021-09-13 22:12:44.021 End of headers.
. 2021-09-13 22:12:44.021 ah_post_send (#0), code is 200 (want 401), WWW-Authenticate is (none)
< 2021-09-13 22:12:44.021 Core BugTracker Error. Possible output buffering bypass. Please die now.
. 2021-09-13 22:12:44.021 Request ends, status 200 class 2xx, error line:
. 2021-09-13 22:12:44.021 200 OK
. 2021-09-13 22:12:44.021 Request ends.
. 2021-09-13 22:12:44.037 --------------------------------------------------------------------------
. 2021-09-13 22:12:44.037 Using WebDAV protocol.
. 2021-09-13 22:12:44.037 Doing startup conversation with host.
. 2021-09-13 22:12:44.059 Changing directory to "/webapi/webdav".
. 2021-09-13 22:12:44.059 Trying to open directory "/webapi/webdav/".
. 2021-09-13 22:12:44.059 ah_create, for WWW-Authenticate
> 2021-09-13 22:12:44.059 <?xml version="1.0" encoding="utf-8"?>
> 2021-09-13 22:12:44.059 <propfind xmlns="DAV:"><allprop/></propfind>
. 2021-09-13 22:12:44.059 Sending request headers:
. 2021-09-13 22:12:44.059 PROPFIND /webapi/webdav/ HTTP/1.1
 
. 2021-09-13 22:12:44.059 User-Agent: WinSCP/5.19.2 neon/0.31.2
 
. 2021-09-13 22:12:44.059 Connection: TE
 
. 2021-09-13 22:12:44.059 TE: trailers
 
. 2021-09-13 22:12:44.059 Host: hostname.com
 
. 2021-09-13 22:12:44.059 Depth: 0
 
. 2021-09-13 22:12:44.059 Content-Length: 84
 
. 2021-09-13 22:12:44.059 Content-Type: application/xml
. 2021-09-13 22:12:44.059 Sending request-line and headers:
. 2021-09-13 22:12:44.059 Sending request body:
. 2021-09-13 22:12:44.059 Request sent; retry is 1.
. 2021-09-13 22:12:44.122 [status-line] < HTTP/1.1 401 Unauthorized
. 2021-09-13 22:12:44.122 Header Name: [date], Value: [Mon, 13 Sep 2021 20:12:46 GMT]
. 2021-09-13 22:12:44.122 Header Name: [content-type], Value: [text/html; charset=UTF-8]
. 2021-09-13 22:12:44.122 Header Name: [transfer-encoding], Value: [chunked]
. 2021-09-13 22:12:44.122 Header Name: [connection], Value: [keep-alive]
. 2021-09-13 22:12:44.122 Header Name: [keep-alive], Value: [timeout=20]
. 2021-09-13 22:12:44.122 Header Name: [www-authenticate], Value: [Basic realm="WebDAV Server 6.6.6"]
. 2021-09-13 22:12:44.122 Header Name: [www-authenticate], Value: [Digest realm="WebDAV Server 6.6.6", domain="hostname.com", nonce="309b7ce1576e5cec513d62c180a88da1", opaque="d75db7b160fe72d1346d2bd1f67bfd10", algorithm="MD5", qop="auth"]
. 2021-09-13 22:12:44.122 Header Name: [dav], Value: [1]
. 2021-09-13 22:12:44.122 Header Name: [x-cache-namespace], Value: [13950]
. 2021-09-13 22:12:44.122 Header Name: [x-xss-protection], Value: [1]
. 2021-09-13 22:12:44.122 Header Name: [x-powered-by], Value: [DCSaaS]
. 2021-09-13 22:12:44.122 Header Name: [server], Value: [DCSaaS/httpd]
. 2021-09-13 22:12:44.122 Header Name: [x-content-type-options], Value: [nosniff]
. 2021-09-13 22:12:44.122 End of headers.
. 2021-09-13 22:12:44.122 End of headers.
. 2021-09-13 22:12:44.122 ah_post_send (#0), code is 401 (want 401), WWW-Authenticate is Basic realm="WebDAV Server 6.6.6", Digest realm="WebDAV Server 6.6.6", domain="hostname.com", nonce="309b7ce1576e5cec513d62c180a88da1", opaque="d75db7b160fe72d1346d2bd1f67bfd10", algorithm="MD5", qop="auth"
. 2021-09-13 22:12:44.122 auth: Got challenge (code 401).
. 2021-09-13 22:12:44.122 auth: Got 'Basic' challenge.
. 2021-09-13 22:12:44.122 auth: Got 'Digest' challenge.
. 2021-09-13 22:12:44.122 auth: Trying Digest challenge...
. 2021-09-13 22:12:44.122 auth: Using domain /hostname.com from hostname.com
. 2021-09-13 22:12:44.122 auth: Got qop, using 2617-style.
. 2021-09-13 22:12:44.122 auth: H(A1) is [75c6b7ee0f436b5ce3c5061904cdca34]
. 2021-09-13 22:12:44.122 auth: Accepting digest challenge.
. 2021-09-13 22:12:44.122 auth: Accepted Digest challenge.
. 2021-09-13 22:12:44.122 auth: Sending 'Digest' response.
. 2021-09-13 22:12:44.122 auth: '/webapi/webdav/' is inside auth domain: 0.
> 2021-09-13 22:12:44.122 <?xml version="1.0" encoding="utf-8"?>
> 2021-09-13 22:12:44.122 <propfind xmlns="DAV:"><allprop/></propfind>
. 2021-09-13 22:12:44.122 Sending request headers:
. 2021-09-13 22:12:44.122 PROPFIND /webapi/webdav/ HTTP/1.1
 
. 2021-09-13 22:12:44.122 User-Agent: WinSCP/5.19.2 neon/0.31.2
 
. 2021-09-13 22:12:44.122 Connection: TE
 
. 2021-09-13 22:12:44.122 TE: trailers
 
. 2021-09-13 22:12:44.122 Host: hostname.com
 
. 2021-09-13 22:12:44.122 Depth: 0
 
. 2021-09-13 22:12:44.122 Content-Length: 84
 
. 2021-09-13 22:12:44.122 Content-Type: application/xml
. 2021-09-13 22:12:44.122 Sending request-line and headers:
. 2021-09-13 22:12:44.122 Sending request body:
. 2021-09-13 22:12:44.122 Request sent; retry is 1.
. 2021-09-13 22:12:44.445 [status-line] < HTTP/1.1 401 Unauthorized
. 2021-09-13 22:12:44.445 Header Name: [date], Value: [Mon, 13 Sep 2021 20:12:46 GMT]
. 2021-09-13 22:12:44.445 Header Name: [content-type], Value: [text/html; charset=UTF-8]
. 2021-09-13 22:12:44.445 Header Name: [transfer-encoding], Value: [chunked]
. 2021-09-13 22:12:44.445 Header Name: [connection], Value: [keep-alive]
. 2021-09-13 22:12:44.445 Header Name: [keep-alive], Value: [timeout=20]
. 2021-09-13 22:12:44.445 Header Name: [www-authenticate], Value: [Basic realm="WebDAV Server 6.6.6"]
. 2021-09-13 22:12:44.445 Header Name: [www-authenticate], Value: [Digest realm="WebDAV Server 6.6.6", domain="hostname.com", nonce="309b7ce1576e5cec513d62c180a88da1", opaque="d75db7b160fe72d1346d2bd1f67bfd10", algorithm="MD5", qop="auth"]
. 2021-09-13 22:12:44.445 Header Name: [dav], Value: [1]
. 2021-09-13 22:12:44.445 Header Name: [x-cache-namespace], Value: [13950]
. 2021-09-13 22:12:44.445 Header Name: [x-xss-protection], Value: [1]
. 2021-09-13 22:12:44.445 Header Name: [x-powered-by], Value: [DCSaaS]
. 2021-09-13 22:12:44.445 Header Name: [server], Value: [DCSaaS/httpd]
. 2021-09-13 22:12:44.445 Header Name: [x-content-type-options], Value: [nosniff]
. 2021-09-13 22:12:44.445 End of headers.
. 2021-09-13 22:12:44.445 End of headers.
. 2021-09-13 22:12:44.445 ah_post_send (#1), code is 401 (want 401), WWW-Authenticate is Basic realm="WebDAV Server 6.6.6", Digest realm="WebDAV Server 6.6.6", domain="hostname.com", nonce="309b7ce1576e5cec513d62c180a88da1", opaque="d75db7b160fe72d1346d2bd1f67bfd10", algorithm="MD5", qop="auth"
. 2021-09-13 22:12:44.445 auth: Got challenge (code 401).
. 2021-09-13 22:12:44.445 auth: Got 'Basic' challenge.
. 2021-09-13 22:12:44.445 auth: Got 'Digest' challenge.
. 2021-09-13 22:12:44.445 auth: Trying Digest challenge...
. 2021-09-13 22:12:44.445 auth: Using domain /hostname.com from hostname.com
. 2021-09-13 22:12:44.461 Password prompt
. 2021-09-13 22:13:57.677 auth: Got qop, using 2617-style.
. 2021-09-13 22:13:57.677 auth: H(A1) is [75c6b7ee0f436b5ce3c5061904cdca34]
. 2021-09-13 22:13:57.677 auth: Accepting digest challenge.
. 2021-09-13 22:13:57.677 auth: Accepted Digest challenge.
. 2021-09-13 22:13:57.677 auth: Sending 'Digest' response.
. 2021-09-13 22:13:57.677 auth: '/webapi/webdav/' is inside auth domain: 0.
> 2021-09-13 22:13:57.677 <?xml version="1.0" encoding="utf-8"?>
> 2021-09-13 22:13:57.677 <propfind xmlns="DAV:"><allprop/></propfind>
. 2021-09-13 22:13:57.677 Sending request headers:
. 2021-09-13 22:13:57.677 PROPFIND /webapi/webdav/ HTTP/1.1
 
. 2021-09-13 22:13:57.677 User-Agent: WinSCP/5.19.2 neon/0.31.2
 
. 2021-09-13 22:13:57.677 Connection: TE
 
. 2021-09-13 22:13:57.677 TE: trailers
 
. 2021-09-13 22:13:57.677 Host: hostname.com
 
. 2021-09-13 22:13:57.677 Depth: 0
 
. 2021-09-13 22:13:57.677 Content-Length: 84
 
. 2021-09-13 22:13:57.677 Content-Type: application/xml
. 2021-09-13 22:13:57.677 Sending request-line and headers:
. 2021-09-13 22:13:57.677 Sending request body:
. 2021-09-13 22:13:57.677 Request sent; retry is 1.
. 2021-09-13 22:13:57.727 [status-line] < HTTP/1.1 401 Unauthorized
. 2021-09-13 22:13:57.727 Header Name: [date], Value: [Mon, 13 Sep 2021 20:13:59 GMT]
. 2021-09-13 22:13:57.727 Header Name: [content-type], Value: [text/html; charset=UTF-8]
. 2021-09-13 22:13:57.727 Header Name: [transfer-encoding], Value: [chunked]
. 2021-09-13 22:13:57.727 Header Name: [connection], Value: [keep-alive]
. 2021-09-13 22:13:57.727 Header Name: [keep-alive], Value: [timeout=20]
. 2021-09-13 22:13:57.727 Header Name: [www-authenticate], Value: [Basic realm="WebDAV Server 6.6.6"]
. 2021-09-13 22:13:57.727 Header Name: [www-authenticate], Value: [Digest realm="WebDAV Server 6.6.6", domain="hostname.com", nonce="309b7ce1576e5cec513d62c180a88da1", opaque="d75db7b160fe72d1346d2bd1f67bfd10", algorithm="MD5", qop="auth"]
. 2021-09-13 22:13:57.727 Header Name: [dav], Value: [1]
. 2021-09-13 22:13:57.727 Header Name: [x-cache-namespace], Value: [13950]
. 2021-09-13 22:13:57.727 Header Name: [x-xss-protection], Value: [1]
. 2021-09-13 22:13:57.727 Header Name: [x-powered-by], Value: [DCSaaS]
. 2021-09-13 22:13:57.727 Header Name: [server], Value: [DCSaaS/httpd]
. 2021-09-13 22:13:57.727 Header Name: [x-content-type-options], Value: [nosniff]
. 2021-09-13 22:13:57.727 End of headers.
. 2021-09-13 22:13:57.727 End of headers.
. 2021-09-13 22:13:57.727 ah_post_send (#2), code is 401 (want 401), WWW-Authenticate is Basic realm="WebDAV Server 6.6.6", Digest realm="WebDAV Server 6.6.6", domain="hostname.com", nonce="309b7ce1576e5cec513d62c180a88da1", opaque="d75db7b160fe72d1346d2bd1f67bfd10", algorithm="MD5", qop="auth"
. 2021-09-13 22:13:57.727 auth: Got challenge (code 401).
. 2021-09-13 22:13:57.727 auth: Got 'Basic' challenge.
. 2021-09-13 22:13:57.727 auth: Got 'Digest' challenge.
. 2021-09-13 22:13:57.727 auth: Trying Digest challenge...
. 2021-09-13 22:13:57.727 auth: Using domain /hostname.com from hostname.com
. 2021-09-13 22:13:57.727 Password prompt
. 2021-09-13 22:13:59.235 auth: Got qop, using 2617-style.
. 2021-09-13 22:13:59.235 auth: H(A1) is [75c6b7ee0f436b5ce3c5061904cdca34]
. 2021-09-13 22:13:59.235 auth: Accepting digest challenge.
. 2021-09-13 22:13:59.235 auth: Accepted Digest challenge.
. 2021-09-13 22:13:59.235 auth: Sending 'Digest' response.
. 2021-09-13 22:13:59.235 auth: '/webapi/webdav/' is inside auth domain: 0.
> 2021-09-13 22:13:59.235 <?xml version="1.0" encoding="utf-8"?>
> 2021-09-13 22:13:59.235 <propfind xmlns="DAV:"><allprop/></propfind>
. 2021-09-13 22:13:59.235 Sending request headers:
. 2021-09-13 22:13:59.235 PROPFIND /webapi/webdav/ HTTP/1.1
 
. 2021-09-13 22:13:59.235 User-Agent: WinSCP/5.19.2 neon/0.31.2
 
. 2021-09-13 22:13:59.235 Connection: TE
 
. 2021-09-13 22:13:59.235 TE: trailers
 
. 2021-09-13 22:13:59.235 Host: hostname.com
 
. 2021-09-13 22:13:59.235 Depth: 0
 
. 2021-09-13 22:13:59.235 Content-Length: 84
 
. 2021-09-13 22:13:59.235 Content-Type: application/xml
. 2021-09-13 22:13:59.235 Sending request-line and headers:
. 2021-09-13 22:13:59.235 Sending request body:
. 2021-09-13 22:13:59.235 Request sent; retry is 1.
. 2021-09-13 22:13:59.293 [status-line] < HTTP/1.1 401 Unauthorized
. 2021-09-13 22:13:59.293 Header Name: [date], Value: [Mon, 13 Sep 2021 20:14:01 GMT]
. 2021-09-13 22:13:59.293 Header Name: [content-type], Value: [text/html; charset=UTF-8]
. 2021-09-13 22:13:59.293 Header Name: [transfer-encoding], Value: [chunked]
. 2021-09-13 22:13:59.293 Header Name: [connection], Value: [keep-alive]
. 2021-09-13 22:13:59.293 Header Name: [keep-alive], Value: [timeout=20]
. 2021-09-13 22:13:59.293 Header Name: [www-authenticate], Value: [Basic realm="WebDAV Server 6.6.6"]
. 2021-09-13 22:13:59.293 Header Name: [www-authenticate], Value: [Digest realm="WebDAV Server 6.6.6", domain="hostname.com", nonce="309b7ce1576e5cec513d62c180a88da1", opaque="d75db7b160fe72d1346d2bd1f67bfd10", algorithm="MD5", qop="auth"]
. 2021-09-13 22:13:59.293 Header Name: [dav], Value: [1]
. 2021-09-13 22:13:59.293 Header Name: [x-cache-namespace], Value: [13950]
. 2021-09-13 22:13:59.293 Header Name: [x-xss-protection], Value: [1]
. 2021-09-13 22:13:59.293 Header Name: [x-powered-by], Value: [DCSaaS]
. 2021-09-13 22:13:59.293 Header Name: [server], Value: [DCSaaS/httpd]
. 2021-09-13 22:13:59.293 Header Name: [x-content-type-options], Value: [nosniff]
. 2021-09-13 22:13:59.293 End of headers.
. 2021-09-13 22:13:59.293 End of headers.
. 2021-09-13 22:13:59.293 ah_post_send (#3), code is 401 (want 401), WWW-Authenticate is Basic realm="WebDAV Server 6.6.6", Digest realm="WebDAV Server 6.6.6", domain="hostname.com", nonce="309b7ce1576e5cec513d62c180a88da1", opaque="d75db7b160fe72d1346d2bd1f67bfd10", algorithm="MD5", qop="auth"
. 2021-09-13 22:13:59.293 auth: Got challenge (code 401).
. 2021-09-13 22:13:59.293 auth: Got 'Basic' challenge.
. 2021-09-13 22:13:59.293 auth: Got 'Digest' challenge.
. 2021-09-13 22:13:59.297 auth: Trying Digest challenge...
. 2021-09-13 22:13:59.297 auth: Using domain /hostname.com from hostname.com
. 2021-09-13 22:13:59.297 Password prompt
. 2021-09-13 22:14:00.122 auth: Got qop, using 2617-style.
. 2021-09-13 22:14:00.122 auth: H(A1) is [75c6b7ee0f436b5ce3c5061904cdca34]
. 2021-09-13 22:14:00.122 auth: Accepting digest challenge.
. 2021-09-13 22:14:00.122 auth: Accepted Digest challenge.
. 2021-09-13 22:14:00.122 auth: Sending 'Digest' response.
. 2021-09-13 22:14:00.122 auth: '/webapi/webdav/' is inside auth domain: 0.
> 2021-09-13 22:14:00.122 <?xml version="1.0" encoding="utf-8"?>
> 2021-09-13 22:14:00.122 <propfind xmlns="DAV:"><allprop/></propfind>
. 2021-09-13 22:14:00.122 Sending request headers:
. 2021-09-13 22:14:00.122 PROPFIND /webapi/webdav/ HTTP/1.1
 
. 2021-09-13 22:14:00.122 User-Agent: WinSCP/5.19.2 neon/0.31.2
 
. 2021-09-13 22:14:00.122 Connection: TE
 
. 2021-09-13 22:14:00.122 TE: trailers
 
. 2021-09-13 22:14:00.122 Host: hostname.com
 
. 2021-09-13 22:14:00.122 Depth: 0
 
. 2021-09-13 22:14:00.122 Content-Length: 84
 
. 2021-09-13 22:14:00.122 Content-Type: application/xml
. 2021-09-13 22:14:00.122 Sending request-line and headers:
. 2021-09-13 22:14:00.122 Sending request body:
. 2021-09-13 22:14:00.122 Request sent; retry is 1.
. 2021-09-13 22:14:00.169 [status-line] < HTTP/1.1 401 Unauthorized
. 2021-09-13 22:14:00.169 Header Name: [date], Value: [Mon, 13 Sep 2021 20:14:02 GMT]
. 2021-09-13 22:14:00.169 Header Name: [content-type], Value: [text/html; charset=UTF-8]
. 2021-09-13 22:14:00.169 Header Name: [transfer-encoding], Value: [chunked]
. 2021-09-13 22:14:00.169 Header Name: [connection], Value: [keep-alive]
. 2021-09-13 22:14:00.169 Header Name: [keep-alive], Value: [timeout=20]
. 2021-09-13 22:14:00.169 Header Name: [www-authenticate], Value: [Basic realm="WebDAV Server 6.6.6"]
. 2021-09-13 22:14:00.169 Header Name: [www-authenticate], Value: [Digest realm="WebDAV Server 6.6.6", domain="hostname.com", nonce="309b7ce1576e5cec513d62c180a88da1", opaque="d75db7b160fe72d1346d2bd1f67bfd10", algorithm="MD5", qop="auth"]
. 2021-09-13 22:14:00.169 Header Name: [dav], Value: [1]
. 2021-09-13 22:14:00.169 Header Name: [x-cache-namespace], Value: [13950]
. 2021-09-13 22:14:00.169 Header Name: [x-xss-protection], Value: [1]
. 2021-09-13 22:14:00.169 Header Name: [x-powered-by], Value: [DCSaaS]
. 2021-09-13 22:14:00.169 Header Name: [server], Value: [DCSaaS/httpd]
. 2021-09-13 22:14:00.169 Header Name: [x-content-type-options], Value: [nosniff]
. 2021-09-13 22:14:00.169 End of headers.
. 2021-09-13 22:14:00.169 End of headers.
. 2021-09-13 22:14:00.169 ah_post_send (#4), code is 401 (want 401), WWW-Authenticate is Basic realm="WebDAV Server 6.6.6", Digest realm="WebDAV Server 6.6.6", domain="hostname.com", nonce="309b7ce1576e5cec513d62c180a88da1", opaque="d75db7b160fe72d1346d2bd1f67bfd10", algorithm="MD5", qop="auth"
. 2021-09-13 22:14:00.169 auth: Got challenge (code 401).
. 2021-09-13 22:14:00.169 auth: Got 'Basic' challenge.
. 2021-09-13 22:14:00.169 auth: Got 'Digest' challenge.
. 2021-09-13 22:14:00.169 auth: Trying Digest challenge...
. 2021-09-13 22:14:00.169 auth: Using domain /hostname.com from hostname.com
. 2021-09-13 22:14:00.169 Password prompt
. 2021-09-13 22:14:00.622 Attempt to close connection due to fatal exception:
. 2021-09-13 22:14:00.622 sess: Destroying session.
. 2021-09-13 22:14:00.622 sess: Closing connection.
. 2021-09-13 22:14:00.625 sess: Connection closed.
. 2021-09-13 22:14:00.630 Configured initial remote directory cannot be opened, staying in the home directory.
* 2021-09-13 22:14:00.653 (ESshFatal)

Last edited by Maks on 2021-09-13 21:26; edited 1 time in total

Reply with quote

martin◆ Site Admin
Joined:: 2002-12-10
Posts:: 41,454
Location:: Prague, Czechia

Re: WebDAV connection - WinSCP asks for password all the time

2021-09-13

Please post verbose Cyberduck log as well. Is there any special character in your credentials?

Reply with quote

Maks
Joined:: 2021-09-09
Posts:: 8

Re: WebDAV connection - WinSCP asks for password all the time

2021-09-14 08:10

I use only digits and basic latin characters in credentials. Here I attach log both from Cyberduck and WinSCP. There is a difference in Content-Length - 297 (Cyberduck) vs 84 (WinSCP).

Last edited by Maks on 2021-09-16 10:39; edited 1 time in total

winscp.log (20.08 KB)

cyberduck.log (51.99 KB)

Reply with quote

Maks

2021-09-16 09:46

Any clues or suggestions? What can I do to use WinSCP instead of Cyberduck for WebDAV and have a connection to server?

Reply with quote

martin◆ Site Admin
Joined:: 2002-12-10
Posts:: 41,454
Location:: Prague, Czechia

Re: WebDAV connection - WinSCP asks for password all the time

2021-09-16

The hostname.com/webapi/webdav is not a valid hostname.

. 2021-09-13 22:12:42.991 Host name: hostname.com/webapi/webdav (Port: 443)

It should be just hostname.com.

Reply with quote

Maks
Joined:: 2021-09-09
Posts:: 8

2021-09-16 10:27

Hi Martin!

Here I paste screenshots from WinSCP and Cyberduck. In my opinion the configuration in WinSCP is the same as in Cyberduck.

I replaced hostname in the logs I pasted before not to reveal the real hostname. Of course I didn't change the syntax and path in logs.

Cyberduck_1.png (45.09 KB)

WinSCP_2.PNG (10.33 KB)

WinSCP_1.png (21.24 KB)

Reply with quote

Maks
Joined:: 2021-09-09
Posts:: 8

Re: WebDAV connection - WinSCP asks for password all the time

2021-09-17 15:33

Problem is the same and I see password prompt all the time. I'm sure I put correct password. I attach the log with correct hostname. I hope it will be easier to read now.

winscp_correct_hostname.log (23.73 KB)

Reply with quote

martin◆ Site Admin

Re: WebDAV connection - WinSCP asks for password all the time

2021-09-20

I have sent you an email with a debug version of WinSCP to the address you have used to register on this forum.

Reply with quote

Maks

Re: WebDAV connection - WinSCP asks for password all the time

2021-09-20 14:49

Thank you Martin,

I've replied to the mail and sent you debug and session log. Please let me know if you need more details or screenshots.

Reply with quote

martin◆ Site Admin
Joined:: 2002-12-10
Posts:: 41,454
Location:: Prague, Czechia

Re: WebDAV connection - WinSCP asks for password all the time

2021-09-21

Thanks for the log. I believe the problem is this:

. 2021-09-20 15:23:57.607 ah_post_send (#0), code is 401 (want 401), WWW-Authenticate is Basic realm="WebDAV Server 6.6.6", Digest realm="WebDAV Server 6.6.6", domain="subdomain.hostname.pl", nonce="b6712f70cb3e32709c7acb29ca5b430b", opaque="d75db7b160fe72d1346d2bd1f67bfd10", algorithm="MD5", qop="auth"

The domain directive is wrong. It must be an URI prefix, like / or maybe /webapi/webdav.
See https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/WWW-Authenticate

Reply with quote

Maks
Joined:: 2021-09-09
Posts:: 8

Re: WebDAV connection - WinSCP asks for password all the time

2021-09-21 16:41

If I set host to subdomain.hostname.pl/ I got 404.
If set host to subdomain.hostname.pl/webapi/webdav and if I clear remote directory I am able to connect. Unfortunately, I do not see folders which I used to see in Cyberduck.

I think we are one step further to resolve my issue. I will send you debug when I'm using subdomain.hostname.pl/webapi/webdav host.

Reply with quote

martin◆ Site Admin

Re: WebDAV connection - WinSCP asks for password all the time

2021-09-23

No you didn't understand. Imo, it's the server that is misconfigured. No configuration on WinSCP side can fix it.

If Cyberduck works, and it also gets the domain="subdomain.hostname.pl", it's imo a security bug in Cyberduck that is allows you to login.

Reply with quote

Maks

Re: WebDAV connection - WinSCP asks for password all the time

2021-09-23 21:56

Okay, but what is exactly wrong with the server configuration? I'd like to mention that hosting provider even provides a valid file for Cyberduck configuration.

In that file hostname is set to subdomain.hostname.pl and default path set to /webapi/webdav

Reply with quote

martin◆ Site Admin
Joined:: 2002-12-10
Posts:: 41,454
Location:: Prague, Czechia

Re: WebDAV connection - WinSCP asks for password all the time

2021-09-27

I have explained that above:

The domain directive is wrong. It must be an URI prefix, like / or maybe /webapi/webdav.
See https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/WWW-Authenticate

Reply with quote