[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Combining SVN access rights with Active Directory authentication

From: Garrett Rooney <rooneg_at_electricjellyfish.net>
Date: 2006-01-04 23:22:51 CET

On 1/4/06, Ben Collins-Sussman <sussman@red-bean.com> wrote:
> On 1/4/06, Auke Jilderda <jilderda@dds.nl> wrote:
>
> > So far so good but this naturally leads to a next question: Can I define
> > who has access to what using the user accounts and groups defined in the
> > Microsoft Active Directory?
>
> No, you can only tell apache to *authenticate* against AD user
> accounts. You're asking about *authorization*. The only thing
> capable of doing path-based authorization is mod_authz_svn, which has
> its own policy file and own internal notion of groups.

So I guess the question becomes, how difficult would it be to make
mod_authz_svn work with Apache's groups (which I imagine we can get
from LDAP or whatever), rather than its own internal groups.

-garrett

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Wed Jan 4 23:39:00 2006

This is an archived mail posted to the Subversion Dev mailing list.