[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: 1.5 clients can't authenticate to 1.4.6 Server

From: Joe Orton <jorton_at_redhat.com>
Date: Fri, 31 Oct 2008 09:15:29 +0000

On Wed, Oct 29, 2008 at 11:49:03AM -0600, dan wrote:
> Here is the relevant portion of our apache.conf file:
> <Location /subversion >
> Order allow,deny
> Allow from all
> DAV svn
> SVNParentPath /home/subversion
> AuthzSVNAccessFile /home/subversion/svn.auth
> AuthType Digest
> AuthName "Subversion"
> AuthDigestProvider file
> AuthUserFile /home/webauth/webauth.password
> AuthDigestDomain /webauth

The AuthDigestDomain configuration is incorrect, it specifies a
protection domain which excludes the location you are trying to protect.
Remove the directive, or use, e.g.

   AuthDigestDomain /subversion

See the docs for more details:


(versions of neon older than 0.28.0 did not validate the domain
parameter sent to the client, but new ones do)

Regards, Joe

To unsubscribe, e-mail: users-unsubscribe_at_subversion.tigris.org
For additional commands, e-mail: users-help_at_subversion.tigris.org
Received on 2008-10-31 10:16:02 CET

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.