Re: User authentification for repository access (apache/ssl)

From: Martin v. Löwis <martin_at_v.loewis.de>
Date: 2003-06-26 22:18:36 CEST

mailing.lists@gmx.net writes:

> i tried a apache module called mod_auth_shadow, this works fine, but uses
> only the local users on the system.

You should be able to use standard Basic authentication (mod_auth) as
well, just provide a proper passwd file. Notice that authorization
applies to the entire repository; use mod_authz_svn for per-path
authorization.

> has anyone used svn/apache w/ NIS authentification?

Apache does not support NIS. You need to dump the NIS database
repeatedly into a file (e.g. using ypcat/niscat). We run Apache on the
NIS master, and set the AuthUserFile to point to /var/yp/somewhere.

> -> the repository can only be accessd from an intranet w/ ssl.

You might consider using SSL client authentication instead of
username/password; this would require creating certificates for all
users. We are moving towards that infrastructure, so that users don't
have to type their NIS passwords on every repository operation.

HTH,
Martin

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Thu Jun 26 22:19:46 2003

This message: [ Message body ]
Next message: Faheem Mitha: "Re: comparing a url and a working copy"
Previous message: Faheem Mitha: "Re: comparing a url and a working copy"
In reply to: mailing.lists_at_gmx.net: "User authentification for repository access (apache/ssl)"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]