httpauthplugin logging in and then saying "forbidden" even if the rights are there

[solo turn]

hi,

how could one improve httpauthplugin so it really logs you in? see
also http://trac-hacks.org/ticket/1021.

when logging in:
Trac[filter] DEBUG: HTTPAuthFilter: Authentication okay
Trac[main] WARNING: 403 Forbidden (403 Forbidden (XML_RPC privileges
are required to perform this operation))

which is rather strange ... given that the rights are ok. it works
when httpauthplugin is disabled.

-solo