Skip to content
    • Welcome to the Linux Foundation Forum!

    Apache subversioning with Active Directory groups integration

    Posts: 2
    in System Management

    Hello there



    I had the task of creating a svn server with active directory authentication on linux.

    The users connect to the repo using Tortoise Svn.

    I have successfully integrated active directory groups for authentication on the repos.



    I can set access permissions to different groups to different repos.





    The problem is that all the members of the group that has access, have Read/Write access to a repo.

    I wish to grant Read Only rights to some groups but I have not been able to do this.



    The repos are defined in /etc/apache2/mods-available/dav-svn.conf



    The definition of a repo looks like this.

     


    1. <Location /svn/mysvnrepo>
    3.     DAV svn
    4.     SVNPath /var/lib/svn/mysvnrepo
    5.     SVNListparentPath on
    6.     SVNAutoversioning on
    7.     AuthType Basic
    9.     SVNReposName "Repotest"
    10.     AuthName “mysvnrepo”
    12.     AuthBasicProvider ldap
    13.     AuthLDAPURL "ldap://10.10.1.1:389/DC=example,DC=local?sAMAccountName?sub?(objectClass=*)"
    15. <Limit GET PROPFIND OPTIONS REPORT>
    17.     Require ldap-group CN=test,OU=tests,OU=S test,DC=example,DC=local
    19. </Limit>
    21.     AuthLDAPBindDN "CN=svn bind,OU=tests,OU=S test,DC=example,DC=local"
    22.     AuthLDAPBindPassword somepasswd
    23. </Location>

    I really need to grant some groups Read Only access. Right now everybody has either full access or no access.

    Thank you

    Welcome!

    It looks like you're new here. Sign in or register to get started.
    Sign In

    Welcome!

    It looks like you're new here. Sign in or register to get started.
    Sign In

    Quick Links

    Categories

    Upcoming Training