[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Is there a way to prevent local caching AND not have the user log multiple times?

From: Nico Kadel-Garcia <nkadel_at_comcast.net>
Date: 2006-07-28 23:27:20 CEST

----- Original Message -----
From: "D.J. Heap" <djheap@gmail.com>
To: "Keith and Teri Kwiatek" <kwiatekfamily@gmail.com>
Cc: <users@subversion.tigris.org>
Sent: Friday, July 28, 2006 1:02 PM
Subject: Re: Is there a way to prevent local caching AND not have the user
log multiple times?

> On 7/28/06, Keith and Teri Kwiatek <kwiatekfamily@gmail.com> wrote:
>> Hello,
>> Is there a way to configure subversion so that the user password will not
>> be
>> cached on the client, yet the user will not have to log in multiple
>> times?
>> Since the windows user will be logged into the domain, can the subversion
>> client get the username/password from the OS and pass it to the
>> subversion
>> server/apaceh?
>> Thanks
>> K.
> I believe you can use automatic authentication if you are using Apache
> -- check on the TortoiseSVN FAQ or TortoiseSVN mailing list archives.
> IIRC, you use mod_auth_sspi or mod_auth_ntlm or something along with a
> new enough version of neon.

This only works if you force the use of TortoisSVN as the client. This is
next-to-impossible: if the user uses a command-line client in CygWin or from
Linux, in order to do a build environment, the passwords are certainly kept
in clear text.

There are alternatives, such as turning off HTTP/WebDAV and enabling only
svn+ssh access, and not giving out user accounts on the server. This doesn't
prevent the SSH keys from having no password or bad passwords, but it can
force the use of an SSH key.

To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Fri Jul 28 23:28:09 2006

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.