[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: svnserve and ldap status ?

From: Stefan Sperling <stsp_at_elego.de>
Date: Tue, 23 Mar 2010 13:09:28 +0100

On Tue, Mar 23, 2010 at 01:00:09PM +0100, Remi wrote:
> Hi everyone,
>
> I'm trying to set up svnserve to work with ldap using sasl. But actually it
> can't get it work.
>
> Since svn 1.6.5, svnserve should work with sasl. From
> http://svn.apache.org/repos/asf/subversion/tags/1.6.5/CHANGES, I read :
> * allow PLAIN and LOGIN mechanisms with SASL in svnserve (r38205)
>
> I've read many things about ldap/sasl/svnserve on the network, but I cannot
> find a correct configuration.
>
> 1) saslauth (using config file /etc/saslauthd.conf).
> My saslauth config is correct, as I can use testsaslauthd successfully
>
> 2) svnserve
> Here is my config files for svn serve to work with sasl :
>
> 2.a) svnserve.conf
> anon-access = none
> auth-access = write
> [sasl]
> use-sasl = true
>
> 2.b) /usr/lib/sasl2/svn.conf
> sasl_pwcheck_method: auxprop
> auxprop_plugin: sasldb
> mech_list: LOGIN
>
> When I try to checkout files, I get this error :
> svn: Authentication error from server: SASL(-13): user not found: checkpass
> failed
>
> When I change mech_list to PLAIN, I get this error :
> svn: Authentication error from server: SASL(-13): user not found: Password
> verification failed
>
>
> Does anyone set up this kind of configuration successfully ? Please say yes
> and provide config ;)

Thanks for trying.

The developer who did the SASL stuff isn't active anymore.
I have not seen a single person who got it to work yet, and I haven't
tried setting it up myself. I made the PLAIN/LOGIN change you quoted
above, knowing that this is required for interaction with saslauthd.
I was hoping that this change would allow someone out there to
get a working configuration figured out and share it.
Maybe that someone is you? :)

Stefan
Received on 2010-03-23 13:10:06 CET

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.