[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

mod_auth_pam and mod_svn Problems

From: Jeffrey Crawford <jcrawford_at_protrade.com>
Date: 2005-08-06 01:15:17 CEST

Hello Everyone,

    I have an interesting issue with our apache server performing PAM,
and LDAP authentication on our repository. If I use apache's basic
AuthFile authentication everything works fine. If I try to use
mod_auth_pam everthing is slow for one and after a few files gives an error:

Here is how my apache is configured:
<IfDefine SVN>
        <IfModule !mod_dav_svn.c>
                LoadModule dav_svn_module modules/mod_dav_svn.so
        </IfModule>
        <Location /project>
                Order Allow,Deny
                Allow from All

                #AuthType Basic
                AuthName "project Product Code"
                #AuthUserFile /var/www/localhost/svn-users
                #Require valid-user

                DAV svn
                SVNPath /var/data/apache/svn/project

                <IfModule mod_auth_pam.c>
                AuthPAM_Enabled on

                AuthType Basic
                AuthName "project Product Source"
                require group project-dev
                </IfModule>
        </Location>
        <IfDefine SVN_AUTHZ>
                <IfModule !mod_authz_svn.c>
                        LoadModule authz_svn_module
modules/mod_authz_svn.so
                </IfModule>
        </IfDefine>
</IfDefine>

When I try to extract the repository I recieve:
-bash-2.05b$ svn co https://mays.project.com/project/trunk
Error validating server certificate for 'https://mays.project.com:443':
 - The certificate is not issued by a trusted authority. Use the
   fingerprint to validate the certificate manually!
 - The certificate hostname does not match.
Certificate information:
 - Hostname: resources.project.com
 - Valid: from Jul 7 19:34:22 2005 GMT until Jul 6 19:34:22 2008 GMT
 - Issuer: IT Administration, project Inc., San Mateo, California, US
 - Fingerprint: b6:61:65:76:fc:39:06:43:57:5e:e4:b9:6c:6c:c4:12:2c:2f:ba:c3
(R)eject, accept (t)emporarily or accept (p)ermanently? t
A trunk/serverAdmin
A trunk/serverAdmin/.classpath
A trunk/serverAdmin/project.properties
A trunk/serverAdmin/.project
A trunk/serverAdmin/maven.xml
A trunk/serverAdmin/project.xml
A trunk/serverAdmin/src
A trunk/serverAdmin/src/java
A trunk/serverAdmin/src/java/com
A trunk/serverAdmin/src/java/com/project
A trunk/serverAdmin/src/java/com/project/admin
svn: REPORT request failed on '/project/!svn/vcc/default'
svn: REPORT of '/project/!svn/vcc/default': Could not read response
body: Secure connection truncated (https://mays.project.com)

So it starts to work but then fails.

If I use authentication with the apache password file everything seems
to work correctly. Anybody have any hints

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Sat Aug 6 01:17:11 2005

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.