RE: Subversion access control

From: Bob Archer <Bob.Archer_at_amsi.com>
Date: Tue, 19 Jul 2011 12:02:40 -0400

> Guten Tag Andy Canfield,
> am Dienstag, 19. Juli 2011 um 12:50 schrieben Sie:
>
> > [1] Why does it ask for the password for "andy", then ask for a
> user
> > name and password?
>
> The svn client first tried the last used user or your current
> username
> on underlying OS.
>
> > [2] What is an authentication realm?
>
> It's some some string to show you to which repository you want to
> authorize. It can be configured in the repository configuration
> using
> the "realm" key. This way you wouldn't get GUIDs liek above, but
> for
> example "Repo XY".
>
> realm = Repo XY
>

The realm is a way that you can have a "poor mans" single sign on. Basically if you equate a realm to a password file this works well. For example, if you have 3 repos that all use the same password file you can use the same realm for all of them. The credentials on the client are cached at the realm level. So, if you use a separate realm for each repo then you have to log in the first time you use each repo. However, if you specify the same realm for each repository then once the client has credentials for a certain realm cached it won't need to request credentials again.

BOb
Received on 2011-07-19 18:03:16 CEST

This message: [ Message body ]
Next message: Echlin, Jamie: "RE: Subversion and smartcards"
Previous message: Mark Phippard: "Re: Subversion and smartcards"
In reply to: Thorsten Schöning: "Re: Subversion access control"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]