[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: user names from ssl client certificates with mod_authz_svn

From: Travis P <svn_at_castle.fastmail.fm>
Date: 2004-08-15 20:32:31 CEST

On Aug 15, 2004, at 4:59 AM, Jan wrote:
> auth-file:
>
> --- begin ---
> /O=Test/OU=Test
> Users/emailAddress=janreise@yahoo.de/L=Test/ST=Test-State/C=DE/CN=jan:
> --- end ---
>

You need to supply a password: hashed "password". See FakeBasicAuth
description on
  http://httpd.apache.org/docs-2.1/mod/mod_ssl.html

It might be easier to get everything working by breaking your problem
into two parts:
  (1) Try to access a secure page with https
  (2) Try to access Subversion repository with https

In this case, you'd see (1) would have failed, so you'd know the
problem wasn't related to Subversion stuff.

> access-file:
>
> --- begin ---
> [test-repository:/]
> '/O=Test/OU=Test
> Users/emailAddress=janreise@yahoo.de/L=Test/ST=Test-State/C=DE/CN=jan'
> = rw
> --- end ---

I don't remember if I had any trouble using names on the left because I
ended up using groups and that definitely works without any quoting.
Something like this works for me (I use SVNPath rather than
SVNParentPath, so your will be different in that respect):
--- begin ---
[groups]
developers = /CN=Joe Smith, /CN=Jane Doe

# Allow Everyone to read the bottom of the tree
[/]
* = r
@developers = rw

# Special permissions for projectA tree
[/projectA]
* =
@developers = rw
--- end ---

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Sun Aug 15 20:33:28 2004

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.