[32046] in Kerberos
Re: Kerberos for Subversion
daemon@ATHENA.MIT.EDU (Sysmen DEI)
Thu Feb 11 10:34:06 2010
Message-ID: <4B741CE6.5070502@dei.unipd.it>
Date: Thu, 11 Feb 2010 16:06:14 +0100
From: Sysmen DEI <admin@dei.unipd.it>
MIME-Version: 1.0
To: kerberos@mit.edu
In-Reply-To: <7383d1de1002041327q49e7ba80x45aa3a3e9680538c@mail.gmail.com>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
On 02/04/2010 10:27 PM, Girish Mandhania wrote:
> Hello,
> I am working for a university and have Kerberos installed on our server.I
> wish to use Kerberos authentication of Subversion(change management
> application) on Linux.
> Could you please help me with the clear list of steps to be followed, as I
> am not able to find relevant information on the web.
> Let me know if any more details are required..
>
> Cheers.
> ________________________________________________
> Kerberos mailing list Kerberos@mit.edu
> https://mailman.mit.edu/mailman/listinfo/kerberos
>
My standard Subversion installation is based on:
-apache mod_dav_svn mod_authz_svn
-mod_authn_kerb (mod_auth_kerb patched by me inspired on mod_authn_pam)
-svn <location> protected by HTTPS mod_ssl
-svnmanager.org php webapp to manage svn access/repository (patched by
me to get both Kerberos and "external" users in .htpasswd file)
-websvn.tigris.org php webapp for better repository browsing
Main advantages are:
-external collaborators don't need to be in our Kerberos
-there are no filesystem ownership/acl headaches or svn running as root
because all svn files are owned by apache user
-svn external users management can be delegated to Svnmanager admins.
Regards
Valerio Pulese
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
