Securing SubVersion Repository configured to use Windows Authentication
I recently needed to secure the SubVersion repository. I am using SubVersion with Apache on Windows; configured to use Active Directory for user authentication [1, 2].
The interesting thing I found out that setting up ACL you ends up with a system which is case sensitive; especially for users having WRITE access. So if your AuthzSVNAccessFile file has entries similar to following; you have to give user name in upper case; like SHARPCODERS\KHURRAM
[groups]
dev = SHARPCODERS\KHURRAM, khurram
[/]
* = r
@dev = rw
On [2] its mentioned that a new Authentication module for Apache is out which you can configure for case insensitivity; I will try that when I setup a new SubVersion server.
Resources
- Flanakin Weblog (Setting up Windows Authentication for SubVersion with Apache)
- SubVersionary Wiki (Setting up Windows Authentication for SubVersion with Apache)
- My Post (SubVersion Quick Start Resources)