Re: Subversion integrate LDAP

From: Pavel Lyalyakin <pavel.lyalyakin_at_visualsvn.com>
Date: Mon, 28 Nov 2016 15:27:53 +0300

Hello Wlllem,

On Mon, Nov 28, 2016 at 2:58 PM, Wlllem Dalen <willempietje11_at_gmail.com> wrote:
>
> ssl-access_log:
>
> - - [28/Nov/2016:12:40:59 +0100] "GET /svn/se/ HTTP/1.1" 401 381
> - [28/Nov/2016:12:41:12 +0100] "GET /svn/se/ HTTP/1.1" 403 209
> [28/Nov/2016:12:41:12 +0100] "GET /favicon.ico HTTP/1.1" 404 209
>
>
> ssl_error_log:
>
> Mon Nov 28 12:41:12.226892 2016] [authz_svn:error] [pid 29816] [client] Access denied: 'user' GET se:/

Why do you name these logs "ssl_*"? As these are SVN server logs, I
guess that its a typo and you intended to name them as "svn_*".

> It seems that is an authorization error. When i remove
> AuthzSVNAccessFile /etc/httpd/conf/dav_svn.acl
>
> then i have access to the repo, and that's not okay.

As you see, the logged event is "Access denied: 'user' GET se:/". This
event means that the user account authenticates successfully. But this
account lacks permissions to "se" repository. To fix this, you should
look through the authz file "/etc/httpd/conf/dav_svn.acl" and
double-check the access rules it contains.

Read SVNBook | Path-Based Authorization[1] section for the
instructions on how to setup the access rules.

[1]: http://svnbook.red-bean.com/en/1.8/svn.serverconfig.pathbasedauthz.html

--
With best regards,
Pavel Lyalyakin
VisualSVN Team

Received on 2016-11-28 13:28:44 CET

This message: [ Message body ]
Next message: Hussein Ballout: "Re: Error running this command: svn --non-interactive --config-dir /tmp"
Previous message: Branko Čibej: "Re: Subversion integrate LDAP"
In reply to: Wlllem Dalen: "Subversion integrate LDAP"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]