[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

subversion + openldap

From: Dan Bahena <dan.bahena_at_optionmonster.com>
Date: 2007-08-09 23:50:54 CEST


Here is my scenario:

I need to configure subversion with openldap as the authentication

I have the following:

CentOS release 5 (Final) with kernel 2.6.18-8.1.8.el5

I'm using openldap with a self sign certificate.

My subversion.conf file looks like this:

LoadModule dav_svn_module modules/mod_dav_svn.so
LoadModule authz_svn_module modules/mod_authz_svn.so

<Location /repos>
DAV svn
        # Require SSL connection for password protection.

       SVNPath /var/www/svn/repos
       AuthType Basic
       AuthName "Subversion repos"
       AuthLDAPURL ldaps://,dc=camhub,dc=com
       Require valid-user

At the beginning I configured svn to use a file that stored the user
passwords created with htpasswd. All was working ok there.

When I try do to a checkout, I get this message:
[dan_at_danb tmp]$ svn co https://camhub.hostname.com/repos
Error validating server certificate for
 - The certificate is not issued by a trusted authority. Use the
   fingerprint to validate the certificate manually!
 - The certificate hostname does not match.
Certificate information:
 - Hostname: localhost.localdomain
 - Valid: from Jun 5 13:54:58 2007 GMT until Jun 4 13:54:58 2008 GMT
 - Issuer: SomeOrganizationalUnit, SomeOrganization, SomeCity,
SomeState, --
 - Fingerprint:
(R)eject, accept (t)emporarily or accept (p)ermanently? p
Authentication realm: <https://camhub.hostname.com:443> Subversion repos
Password for 'dan':
Authentication realm: <https://camhub.hostname.com:443> Subversion repos
Username: dan
Password for 'dan':
Authentication realm: <https://camhub.hostname.com:443> Subversion repos
Username: svn
Password for 'svn':
svn: PROPFIND request failed on '/repos'
svn: PROPFIND of '/repos': authorization failed

What am I missing? I've googled around for a long time, have tried
different configurations/combinations and still have not get it to work.
Any help?


Dan Bahena <dan.bahena@optionmonster.com>
OptionMonster Holdings, Inc.

Received on Thu Aug 9 23:50:22 2007

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.