Re: Client certificates.

On Thu, Aug 01, 2002 at 12:01:52PM -0500, Ben Collins-Sussman wrote:
>...
> So the *real* challenge of this issue is coming up with a nice way to
> store and manage certificates. I suspect that stashing certs in every
> single .svn/auth/ area (as we do with 'username' and 'password' files)
> isn't going to fly very well. Maybe a subdir within ~/.subversion/
> needs to hold them.

Dan suggested some config options (presumably in a file named something like
~/.subversion/options, formatted/read using our config parser) which would
point to where the certs are located. I can easily see that a default might
be ~/.subversion/certificates/ or whatever.

> But now I fear we're jumping the gun yet again; gstein had/has plans
> to write libsvn_auth, which would be a big reorganization of how the
> client manages credentials in general. Maybe that library should
> happen first?

Don't worry about it. To some extent, this could be a bit nicer in terms of
showing what might be needed for certificate handling. libsvn_auth will
simplify the code, but having Daniel do some of the legwork to demonstrate
what is needed will be good. For example, I wasn't aware of needing just a
password authenticator. That should work fine in the libsvn_auth framework
(as I'm currently seeing it).

Cheers,
-g

-- 
Greg Stein, http://www.lyra.org/
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org