mod_dav_svn & X.509 certificate authorization

From: Udo Rader <listudo_at_bestsolution.at>
Date: Thu, 20 Aug 2009 18:15:17 +0200

Hi,

I am just in the process of setting up a new repository server.

Today access to our repository server is available (only) via
webdav_at_https, with each developer having his own X.509 certificate to
authenticate the https session.

Then, in a next step, he is asked for a username & a password (LDAP
based), that, upon success, is passed on to mod_dav_svn as a username.

And finally, in order to have fine grained access control, we use
mod_authz_svn to restrict who is allowed to do what in the repository
(stored in the AuthzSVNAccessFile flat text file).

Now as I am starting from scratch, I am wondering if progress has been
made to utilize X.509 client authentication for mod_dav_svn and
mod_authz_svn because I would really like to get rid of the second
authentication stage.

Even better, I would also like to migrate the AuthzSVNAccessFile into LDAP.

Any news on that (I remember a thread on this years ago ... :-)

TIA!

-- 
Udo Rader, CTO
http://www.bestsolution.at
http://riaschissl.blogspot.com
------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=2385679
To unsubscribe from this discussion, e-mail: [users-unsubscribe_at_subversion.tigris.org].

Received on 2009-08-20 18:37:24 CEST

This message: [ Message body ]
Next message: Tyler Mace: "svn:externals: same relative path to different repository"
Previous message: Bogdan B. Rudas: "Can't commit via DAV proxy"
Next in thread: Johan Corveleyn: "RE: mod_dav_svn & X.509 certificate authorization"
Reply: Johan Corveleyn: "RE: mod_dav_svn & X.509 certificate authorization"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]