Re: Combining SVN access rights with Active Directory authentication

From: Garrett Rooney <rooneg_at_electricjellyfish.net>
Date: 2006-01-04 23:22:51 CET

On 1/4/06, Ben Collins-Sussman <sussman@red-bean.com> wrote:
> On 1/4/06, Auke Jilderda <jilderda@dds.nl> wrote:
>
> > So far so good but this naturally leads to a next question: Can I define
> > who has access to what using the user accounts and groups defined in the
> > Microsoft Active Directory?
>
> No, you can only tell apache to *authenticate* against AD user
> accounts. You're asking about *authorization*. The only thing
> capable of doing path-based authorization is mod_authz_svn, which has
> its own policy file and own internal notion of groups.

So I guess the question becomes, how difficult would it be to make
mod_authz_svn work with Apache's groups (which I imagine we can get
from LDAP or whatever), rather than its own internal groups.

-garrett

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Wed Jan 4 23:39:00 2006

This message: [ Message body ]
Next message: David Anderson: "Re: [FEATURE]: extend authz algorithm with roles and wildcards to define branch policies."
Previous message: Lieven Govaerts: "RE: Combining SVN access rights with Active Directory authentication"
In reply to: Ben Collins-Sussman: "Re: Combining SVN access rights with Active Directory authentication"
Next in thread: Lieven Govaerts: "RE: Combining SVN access rights with Active Directory authentication"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]