[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Feature suggestion: Scriptable authentication

From: Steve Willer <steve.willer_at_gmail.com>
Date: 2006-08-21 19:58:12 CEST

Hey, folks.

I've been running svnserve in a Windows environment, and we're now in a
situation of "temporary solution becomes permanent" that I would like to
resolve.

The problem is, we're using a local set of users in a plaintext file for
authentication. The passwords are also not strong, because they're viewable
by anyone who can see the file. It's pretty silly. We also can't use Apache2
for auth because ... well, this is Windows, and we have IIS all over the
place, including on that one machine. They don't coexist very well, and
taking on the whole Apache2 stuff as well as IIS is weird and nonstandard.

I have a simple solution that I'd like to get in as an enhancement. I think
it would be quite easy to implement: allow a scriptable authentication host
instead of a username textfile for the authentication. svnserve would run
the program on the command line, giving username and password, and the auth
program could return "yes" or "no" in its stdout (or something along those
lines).

If someone put this code into svn, I could contribute an AD lookup script.
Otherwise, I'll have to set up the whole dev/build environment for svn,
which sounds slightly daunting.

As per the buddy system described in the bug tracker, I'd like to get some
agreement before I put this in as a ticket.

Steve
Received on Mon Aug 21 20:14:43 2006

This is an archived mail posted to the Subversion Users mailing list.