Re: svnserve alternate authentication

From: Andrew Thompson <subversionuser_at_aktzero.com>
Date: 2005-03-08 22:16:23 CET

Robert Hunter wrote:
> I've never used svnserve so I could be way off-base here, but it sounds to
> me like PAM would be a sensible mechanism to leverage here.

On a *nix box, are local user accounts still required if PAM is used?
(/me doesn't PAM)

> If you were using svn+ssh, then you could just make sure that SSH is
> using PAM authentication. I guess svnserve currently does *not* support
> PAM -- is it using some kind of "built-in" authentication mechanism
> provided by the APR? If it is, then perhaps it would be possible to patch
> APR to use PAM where available?

svnserve only has the permissions that are available to it from the user
it is running as. When you run svnserve as a daemon, it runs as whatever
user you set it to, or that by default runs your daemons. When you call
svn via a svn+ssh:// url, svnserve is run with the credentials of the
user that authenticated the ssh connection(you, or your authroized
repository users).

-- 
Andrew Thompson
http://aktzero.com/
Interested in hosted SVN repositories? Email me, let's talk...
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org

Received on Tue Mar 8 22:18:50 2005

This message: [ Message body ]
Next message: Steve Seremeth: "CVS modules functionality -- any movement?"
Previous message: Ben Scheirman: "recovering a corrupt repository"
In reply to: Robert Hunter: "RE: svnserve alternate authentication"
Next in thread: Bradley Molander: "RE: svnserve alternate authentication"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]