[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Client certificates.

From: Greg Stein <gstein_at_lyra.org>
Date: 2002-08-01 22:48:13 CEST

On Thu, Aug 01, 2002 at 12:01:52PM -0500, Ben Collins-Sussman wrote:
> So the *real* challenge of this issue is coming up with a nice way to
> store and manage certificates. I suspect that stashing certs in every
> single .svn/auth/ area (as we do with 'username' and 'password' files)
> isn't going to fly very well. Maybe a subdir within ~/.subversion/
> needs to hold them.

Dan suggested some config options (presumably in a file named something like
~/.subversion/options, formatted/read using our config parser) which would
point to where the certs are located. I can easily see that a default might
be ~/.subversion/certificates/ or whatever.

> But now I fear we're jumping the gun yet again; gstein had/has plans
> to write libsvn_auth, which would be a big reorganization of how the
> client manages credentials in general. Maybe that library should
> happen first?

Don't worry about it. To some extent, this could be a bit nicer in terms of
showing what might be needed for certificate handling. libsvn_auth will
simplify the code, but having Daniel do some of the legwork to demonstrate
what is needed will be good. For example, I wasn't aware of needing just a
password authenticator. That should work fine in the libsvn_auth framework
(as I'm currently seeing it).


Greg Stein, http://www.lyra.org/
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Thu Aug 1 22:45:33 2002

This is an archived mail posted to the Subversion Dev mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.