[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

mod_dav_svn & X.509 certificate authorization

From: Udo Rader <listudo_at_bestsolution.at>
Date: Thu, 20 Aug 2009 18:15:17 +0200


I am just in the process of setting up a new repository server.

Today access to our repository server is available (only) via
webdav_at_https, with each developer having his own X.509 certificate to
authenticate the https session.

Then, in a next step, he is asked for a username & a password (LDAP
based), that, upon success, is passed on to mod_dav_svn as a username.

And finally, in order to have fine grained access control, we use
mod_authz_svn to restrict who is allowed to do what in the repository
(stored in the AuthzSVNAccessFile flat text file).

Now as I am starting from scratch, I am wondering if progress has been
made to utilize X.509 client authentication for mod_dav_svn and
mod_authz_svn because I would really like to get rid of the second
authentication stage.

Even better, I would also like to migrate the AuthzSVNAccessFile into LDAP.

Any news on that (I remember a thread on this years ago ... :-)


Udo Rader, CTO
To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_subversion.tigris.org].
Received on 2009-08-20 18:37:24 CEST

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.