[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

AW: Subversion: integration of certificate based login

From: Markus Oberlassnig <Markus.Oberlassnig_at_ilogs.com>
Date: Tue, 15 Dec 2009 15:25:22 +0100

Hello,

does this also work under windows?

Is there an implementation for connecting via Microsoft CAPI?

Regards, Markus


-----Ursprüngliche Nachricht-----
Von: Joe Orton [mailto:jorton_at_redhat.com]
Gesendet: Freitag, 04. Dezember 2009 14:37
An: Markus Oberlassnig
Cc: users_at_subversion.apache.org
Betreff: Re: Subversion: integration of certificate based login

On Thu, Dec 03, 2009 at 03:50:55PM +0100, Markus Oberlassnig wrote:
> we need to integrate certificate based login to subversion, subclipse
> and tortoise. Is it possible to configure svn, so that a user (client)
> can be authorized by a certificate (X509 and / or PKCS11) without
> additional login. When yes, how can this be done? When no, can you
> give me hints, how to develop this feature or who can develop this
> feature?

You can use SSL client certs with an SVN repos accessed via https, see
the "ssl-client-cert-file" config option, described in the book:

http://svnbook.red-bean.com/en/1.1/ch07.html

> We also need to read the client certificate from a smart card. Is it
> correct that we can use opensc for this feature?

Yes. Set "ssl-pkcs11-provider = opensc" in ~/.subversion/servers
(either in the [global] section or a server-specific group)

Regards, Joe


__________ Hinweis von ESET NOD32 Antivirus, Signaturdatenbank-Version 4664 (20091206) __________

E-Mail wurde geprüft mit ESET NOD32 Antivirus.

http://www.eset.com



__________ Hinweis von ESET NOD32 Antivirus, Signaturdatenbank-Version 4689 (20091215) __________

E-Mail wurde geprüft mit ESET NOD32 Antivirus.

http://www.eset.com

Received on 2009-12-15 15:21:45 CET

This is an archived mail posted to the Subversion Users mailing list.