Re: can't set up access control for networked repositories

From: Ben Collins-Sussman <sussman_at_collab.net>
Date: 2002-11-08 14:15:01 CET

Zack Brown <zbrown@tumblerings.org> writes:

> ---------------------------
> <Location /svn/jennie>
> DAV svn
> SVNPath /home/zbrown/site/writing/svn/jennie
>
> AuthType Basic
> AuthName "Subversion Repository"
> AuthUserFile /home/zbrown/site/writing/svn.passwd
> </Location>
> ---------------------------

Right. As Andreas said, you need "Require valid-user." Your setup
above leaves your repository totally unauthenticated. In other words,
Apache gets http requests to access the repository, but it has no idea
*who* is making the requests, so it just assumes they're all from an
'anonymous' user. If you follow the suggestions in INSTALL and in the
Book, you can force Apache to demand basic authentication on every
request. From there on, it's all a matter of how you want to "loosen"
up this requirement.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Fri Nov 8 14:16:59 2002

This message: [ Message body ]
Next message: Philip Martin: "Re: [PATCH] Remove use of global_pool to apr_xlate"
Previous message: Ben Collins-Sussman: "Re: svnlook/svnadmin proposal."
In reply to: Zack Brown: "can't set up access control for networked repositories"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]