Use LDAP to authenticate SVN user

Question

Use LDAP to authenticate SVN user

I have an SVN server and would like to use our LDAP server to authenticate users. Right now I am specifying usernames and passwords for each repository that works fine, but more people decide to use this server. And I really should not have access to their passwords. I would like to use LDAP to authenticate users, and I want to grant access rights to the entire domain, rather than specifying users separately.

Some (terrible) details:

SVN runs on a computer with Windows XP .: - (
I have both svnserve and http access, but the latter is a very minor issue.
I have minimal knowledge of LDAP (which is probably why I am asking this question.)

Finally, if this is a bad idea, or if there is a better solution, I would be interested to hear it.

Thank!

+5

svn ldap

Joshd 01 Oct '10 at 16:44

source share

1 answer

Sander rijken · Accepted Answer · 2010-10-01T18:07:08+0000

svnserve is used whenever you access URLs starting with svn://. All URLs starting with http://or https://are handled by Apache. All Subversion clients should be able to handle both of them, and TortoiseSVN has no problem with them.

Change your Apache configuration like this:

<Location /svn>
    AuthName "My repository"
    AuthType SSPI

    SSPIAuth On
    SSPIAuthoritative On
    SSPIDomain MYDOMAIN
    SSPIOmitDomain On
    SSPIOfferBasic On
    SSPIUsernameCase lower

    Require valid-user

    DAV svn
    SVNListParentPath on
    SVNParentPath D:/path/to/repos
    AuthzSVNAccessFile D:/path/to/accessfile
</Location>

Use LDAP to authenticate SVN user

More articles: