[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: locking down access to a repository

From: Patricia A Moss <pmoss4_at_csc.com>
Date: Tue, 9 Nov 2010 13:54:54 -0500

I appreciate all of the help that I am receiving. I have still not been
successful in resolving this.

I removed the line:
Require valid-user

I have tried using:
Instead of:

That is the only difference I see in my config files and the examples in
the google hits. Yet I am still not successful in accessing the
I am, apparently, quite a novice with SVN, LDAP and ActiveDirectory
because I am really confused as to how to proceed.

System Engineer Sr. Professional

Patricia A Moss/USA/CSC_at_CSC
11/09/2010 11:13 AM
Re: locking down access to a repository

Patricia A Moss <pmoss4_at_csc.com> wrote on 11/09/2010 09:41:42 AM:

> From: Patricia A Moss <pmoss4_at_csc.com>
> To: kmradke_at_rockwellcollins.com
> Cc: users_at_subversion.apache.org
> Date: 11/09/2010 09:41 AM
> Subject: Re: locking down access to a repository
> >I don't think you want the "Require valid-user" line, since by
> default it uses
> >ANY of the Require lines as matches. (And in your case valid-user
> matches all
> >users so it doesn't care you are also specifying a group and an user.)
> But if I remove that line then no one can access the repository.

I think you also may need to be less specific with your ldapurl (remove
objectclass or use * ??):
(Assuming active directory, this is like what I have used in the past)

  AuthLDAPGroupAttribute member
  Require ldap-group ...

It has been quite awhile since I used ldap groups instead of authz

This first google hit has some examples:


As does this one:


Kevin R.
Received on 2010-11-09 19:55:44 CET

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.