Re: Checkouts fail with mod_authz_svn/FakeBasicAuth

From: Dan Ports <drkp_at_mit.edu>
Date: 2004-10-01 21:39:42 CEST

On Fri, Oct 01, 2004 at 10:27:11AM -0500, Travis P wrote:
> For debugging at least, you might want to try requiring the
> authentication for all interactions, eg with this in your Location
> block:
> SSLRequireSSL

I have in fact tried this, though I don't see how it relates to my
problem. I haven't had any problems with SSL itself, nor with
certificate validity; the only problem is with translating the
certificate ID into something authz_svn can use (via FakeBasicAuth).

> You've tested reading some static web pages via authenticated SLL?
> (with SSLRequireSSL again?)

Yes, this works fine. I can correctly control access to static
webpages based on certificate ID with FakeBasicAuth. The problem seems
to be that the FakeBasicAuth authentication information is apparently
not passed from the HTTP request to any subrequests. This means that
regular HTTP GET requests are fine, but more complex requests (like
those created by a svn checkout) fail.

> The user id running Apache is the same one that created and owns
> everything within the repository, yes?

Yes.

Dan

-- 
Dan R. K. Ports                                
Research Minion
Massachusetts Institute of Technology                     <drkp@mit.edu>
Computer Science and Artificial Intelligence Lab    <drkp@csail.mit.edu>                            
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org

Received on Sat Oct 2 02:05:16 2004

This message: [ Message body ]
Next message: Chuck: "Fw: moving files/dirs"
Previous message: Chuck: "moving files/dirs"
In reply to: Travis P: "Re: Checkouts fail with mod_authz_svn/FakeBasicAuth"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]