[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Apache and .htaccess files

From: Dick Davies <rasputnik_at_hellooperator.net>
Date: 2004-07-16 18:00:29 CEST

* Ben Collins-Sussman <sussman@collab.net> [0751 16:51]:
> On Fri, 2004-07-16 at 10:16, Paul Jones wrote:
> > Thank you for the answer to my first question. I will quit looking for
> > a way to make .htaccess file work.
> >
> > >Why will mod_authz_svn not "work the way you need it to"? Your
> > >requirements are:
> >
> > LDAP Authentication. The users/groups reside in a ldap directory.
>
> If the apache LDAP authentication module is capable of filling in an
> authenticated username in the apache request structure ('r->user'), then
> mod_authz_svn can control permissions to specific
> repositories/directories for each user. I think people have done this
> successfully.

Yup, doing it over here, works a treat.
I don't tend to use .htaccess at all, it's a hack IMO...
 
> When it comes to groups, you're out of luck. mod_authz_svn has its own
> notion of groups, and there's no standard apache mechanism for
> mod_auth_ldap to communicate a "group" to some other module.

I have a belt n braces setup - the entire /repository/ path is protected by a

'require group ou=yadda,dc=yadda,dc=yadda' in httpd.conf, then I further
restrict on a per-repo basis with authz_svn....

-- 
Gnagloot, n.:
	A person who leaves all his ski passes on his jacket just to
impress people.
		-- Rich Hall, "Sniglets"
Rasputin :: Jack of All Trades - Master of Nuns
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Fri Jul 16 18:01:04 2004

This is an archived mail posted to the Subversion Users mailing list.