You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@subversion.apache.org by "Macks, Aaron" <am...@harvardbusiness.org> on 2009/04/16 19:00:47 UTC
web but no SVN access
I'm having a problem with an SVN server I'm rebuilding. With the config I
can access the repo via web-browser(either firefox or curl), but trying
commands from the svn tool fail.
Here is the vhost config from apache
<VirtualHost *:443>
ServerName svn.***
ServerAlias svn
##SSL Specific options
SSLEngine on
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP
SSLCertificateFile conf/ssl.crt/server.crt
SSLCertificateKeyFile conf/ssl.key/server.key
<Location /svn>
SSLRequireSSL
DAV svn
SVNParentPath /svn/repos
AuthzSVNAccessFile /svn/passwords/svn.permissions
AuthType Basic
AuthName "**** Subversion repository"
AuthUserFile /svn/passwords/svn.passwords
Require valid-user
</Location>
Here is a sample curl success
curl -Ik https://svn.****/svn/sysadmins/ -u me
Enter host password for user 'me':
HTTP/1.1 200 OK
Date: Thu, 16 Apr 2009 18:55:49 GMT
Server: Apache/2.0.52
Last-Modified: Thu, 16 Apr 2009 18:33:58 GMT
ETag: W/"995//"
And an SVN failure
svn up
svn: PROPFIND request failed on '/svn/sysadmins/!svn/vcc/default'
svn: PROPFIND of '/svn/sysadmins/!svn/vcc/default': 403 Forbidden
(https://svn.****)
And the error log entry from that failure
[Thu Apr 16 14:56:55 2009] [error] [client 10.*****] client denied by server
configuration: /apps/apache/htdocs/svn/sysadmins
/apps/apache/htdocs is the global server docroot, but the <location> block
should pre-empt that, I thought. Any words of wisdom?
(Server is apache 2.0.52 on RedHat 4.x
thanks
--
Aaron Macks
Sr. Unix Systems Engineer
Harvard Business Publishing
300 North Beacon St. | Watertown, MA 02472
(617) 783-7461 | Fax: (617) 783-7467
www.harvardbusiness.org
------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=1752736
To unsubscribe from this discussion, e-mail: [users-unsubscribe@subversion.tigris.org].
Re: web but no SVN access
Posted by "Macks, Aaron" <am...@harvardbusiness.org>.
But that was enough of a hint, adding an ³allow from all² line in that
<location> block fixed it
Thanks
A
On 4/16/09 5:47 PM, "Aaron Macks" <am...@harvardbusiness.org> wrote:
> Thanks, but there isn¹t a ³deny from all line² in the apache config anywhere.
> One more bit I forgot to add last time, access log snippets from a sucessful
> HEAD and a failed PROPFIND
> 10.103.10.16 - - [16/Apr/2009:17:46:05 -0400] svn.**** "PROPFIND
> /svn/sysadmins/!svn/vcc/default HTTP/1.1" 403 361 "-" "SVN/1.4.6 (r28521)
> neon/0.24.7"
> 10.200.100.113 - me [16/Apr/2009:17:46:23 -0400] svn.**** "HEAD
> /svn/sysadmins/ HTTP/1.1" 200 - "-" "curl/7.16.3 (powerpc-apple-darwin9.0)
> libcurl/7.16.3 OpenSSL/0.9.7l zlib/1.2.3"
>
> A
>
> On 4/16/09 3:16 PM, "alexus" <al...@gmail.com> wrote:
>
>> On Thu, Apr 16, 2009 at 3:00 PM, Macks, Aaron
>> <am...@harvardbusiness.org> wrote:
>>> > I'm having a problem with an SVN server I'm rebuilding. With the config I
>>> > can access the repo via web-browser(either firefox or curl), but trying
>>> > commands from the svn tool fail.
>>> >
>>> > Here is the vhost config from apache
>>> > <VirtualHost *:443>
>>> > ServerName svn.***
>>> > ServerAlias svn
>>> > ##SSL Specific options
>>> > SSLEngine on
>>> > SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP
>>> > SSLCertificateFile conf/ssl.crt/server.crt
>>> > SSLCertificateKeyFile conf/ssl.key/server.key
>>> >
>>> >
>>> > <Location /svn>
>>> > SSLRequireSSL
>>> > DAV svn
>>> > SVNParentPath /svn/repos
>>> > AuthzSVNAccessFile /svn/passwords/svn.permissions
>>> >
>>> > AuthType Basic
>>> > AuthName "**** Subversion repository"
>>> > AuthUserFile /svn/passwords/svn.passwords
>>> > Require valid-user
>>> >
>>> > </Location>
>>> > Here is a sample curl success
>>> > curl -Ik https://svn.****/svn/sysadmins/ -u me
>>> > Enter host password for user 'me':
>>> > HTTP/1.1 200 OK
>>> > Date: Thu, 16 Apr 2009 18:55:49 GMT
>>> > Server: Apache/2.0.52
>>> > Last-Modified: Thu, 16 Apr 2009 18:33:58 GMT
>>> > ETag: W/"995//"
>>> >
>>> > And an SVN failure
>>> > svn up
>>> > svn: PROPFIND request failed on '/svn/sysadmins/!svn/vcc/default'
>>> > svn: PROPFIND of '/svn/sysadmins/!svn/vcc/default': 403 Forbidden
>>> > (https://svn.****)
>>> > And the error log entry from that failure
>>> > [Thu Apr 16 14:56:55 2009] [error] [client 10.*****] client denied by
>>> server
>>> > configuration: /apps/apache/htdocs/svn/sysadmins
>>
>> you need to address that in httpd.conf
>> look for line
>> deny from all
>>
>>> > /apps/apache/htdocs is the global server docroot, but the <location> block
>>> > should pre-empt that, I thought. Any words of wisdom?
>>> > (Server is apache 2.0.52 on RedHat 4.x
>>> >
>>> > thanks
>>> > --
>>> > Aaron Macks
>>> > Sr. Unix Systems Engineer
>>> >
>>> > Harvard Business Publishing
>>> > 300 North Beacon St. | Watertown, MA 02472
>>> > (617) 783-7461 | Fax: (617) 783-7467
>>> > www.harvardbusiness.org
>>> >
>>> > ------------------------------------------------------
>>> >
>>> http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=17
>>> 52736
>>> >
>>> > To unsubscribe from this discussion, e-mail:
>>> [users-unsubscribe@subversion.tigris.org].
>>> >
>>
>> make sure you have neon
>>
>> --
>> http://alexus.org/
>>
--
Aaron Macks
Sr. Unix Systems Engineer
Harvard Business Publishing
300 North Beacon St. | Watertown, MA 02472
(617) 783-7461 | Fax: (617) 783-7467
www.harvardbusiness.org
------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=1755529
To unsubscribe from this discussion, e-mail: [users-unsubscribe@subversion.tigris.org].
Re: web but no SVN access
Posted by "Macks, Aaron" <am...@harvardbusiness.org>.
Thanks, but there isn¹t a ³deny from all line² in the apache config
anywhere. One more bit I forgot to add last time, access log snippets from
a sucessful HEAD and a failed PROPFIND
10.103.10.16 - - [16/Apr/2009:17:46:05 -0400] svn.**** "PROPFIND
/svn/sysadmins/!svn/vcc/default HTTP/1.1" 403 361 "-" "SVN/1.4.6 (r28521)
neon/0.24.7"
10.200.100.113 - me [16/Apr/2009:17:46:23 -0400] svn.**** "HEAD
/svn/sysadmins/ HTTP/1.1" 200 - "-" "curl/7.16.3 (powerpc-apple-darwin9.0)
libcurl/7.16.3 OpenSSL/0.9.7l zlib/1.2.3"
A
On 4/16/09 3:16 PM, "alexus" <al...@gmail.com> wrote:
> On Thu, Apr 16, 2009 at 3:00 PM, Macks, Aaron
> <am...@harvardbusiness.org> wrote:
>> > I'm having a problem with an SVN server I'm rebuilding. With the config I
>> > can access the repo via web-browser(either firefox or curl), but trying
>> > commands from the svn tool fail.
>> >
>> > Here is the vhost config from apache
>> > <VirtualHost *:443>
>> > ServerName svn.***
>> > ServerAlias svn
>> > ##SSL Specific options
>> > SSLEngine on
>> > SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP
>> > SSLCertificateFile conf/ssl.crt/server.crt
>> > SSLCertificateKeyFile conf/ssl.key/server.key
>> >
>> >
>> > <Location /svn>
>> > SSLRequireSSL
>> > DAV svn
>> > SVNParentPath /svn/repos
>> > AuthzSVNAccessFile /svn/passwords/svn.permissions
>> >
>> > AuthType Basic
>> > AuthName "**** Subversion repository"
>> > AuthUserFile /svn/passwords/svn.passwords
>> > Require valid-user
>> >
>> > </Location>
>> > Here is a sample curl success
>> > curl -Ik https://svn.****/svn/sysadmins/ -u me
>> > Enter host password for user 'me':
>> > HTTP/1.1 200 OK
>> > Date: Thu, 16 Apr 2009 18:55:49 GMT
>> > Server: Apache/2.0.52
>> > Last-Modified: Thu, 16 Apr 2009 18:33:58 GMT
>> > ETag: W/"995//"
>> >
>> > And an SVN failure
>> > svn up
>> > svn: PROPFIND request failed on '/svn/sysadmins/!svn/vcc/default'
>> > svn: PROPFIND of '/svn/sysadmins/!svn/vcc/default': 403 Forbidden
>> > (https://svn.****)
>> > And the error log entry from that failure
>> > [Thu Apr 16 14:56:55 2009] [error] [client 10.*****] client denied by
>> server
>> > configuration: /apps/apache/htdocs/svn/sysadmins
>
> you need to address that in httpd.conf
> look for line
> deny from all
>
>> > /apps/apache/htdocs is the global server docroot, but the <location> block
>> > should pre-empt that, I thought. Any words of wisdom?
>> > (Server is apache 2.0.52 on RedHat 4.x
>> >
>> > thanks
>> > --
>> > Aaron Macks
>> > Sr. Unix Systems Engineer
>> >
>> > Harvard Business Publishing
>> > 300 North Beacon St. | Watertown, MA 02472
>> > (617) 783-7461 | Fax: (617) 783-7467
>> > www.harvardbusiness.org
>> >
>> > ------------------------------------------------------
>> >
>> http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=175
>> 2736
>> >
>> > To unsubscribe from this discussion, e-mail:
>> [users-unsubscribe@subversion.tigris.org].
>> >
>
> make sure you have neon
>
> --
> http://alexus.org/
>
--
Aaron Macks
Sr. Unix Systems Engineer
Harvard Business Publishing
300 North Beacon St. | Watertown, MA 02472
(617) 783-7461 | Fax: (617) 783-7467
www.harvardbusiness.org
------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=1755473
To unsubscribe from this discussion, e-mail: [users-unsubscribe@subversion.tigris.org].
Re: web but no SVN access
Posted by alexus <al...@gmail.com>.
On Thu, Apr 16, 2009 at 3:00 PM, Macks, Aaron
<am...@harvardbusiness.org> wrote:
> I'm having a problem with an SVN server I'm rebuilding. With the config I
> can access the repo via web-browser(either firefox or curl), but trying
> commands from the svn tool fail.
>
> Here is the vhost config from apache
> <VirtualHost *:443>
> ServerName svn.***
> ServerAlias svn
> ##SSL Specific options
> SSLEngine on
> SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP
> SSLCertificateFile conf/ssl.crt/server.crt
> SSLCertificateKeyFile conf/ssl.key/server.key
>
>
> <Location /svn>
> SSLRequireSSL
> DAV svn
> SVNParentPath /svn/repos
> AuthzSVNAccessFile /svn/passwords/svn.permissions
>
> AuthType Basic
> AuthName "**** Subversion repository"
> AuthUserFile /svn/passwords/svn.passwords
> Require valid-user
>
> </Location>
> Here is a sample curl success
> curl -Ik https://svn.****/svn/sysadmins/ -u me
> Enter host password for user 'me':
> HTTP/1.1 200 OK
> Date: Thu, 16 Apr 2009 18:55:49 GMT
> Server: Apache/2.0.52
> Last-Modified: Thu, 16 Apr 2009 18:33:58 GMT
> ETag: W/"995//"
>
> And an SVN failure
> svn up
> svn: PROPFIND request failed on '/svn/sysadmins/!svn/vcc/default'
> svn: PROPFIND of '/svn/sysadmins/!svn/vcc/default': 403 Forbidden
> (https://svn.****)
> And the error log entry from that failure
> [Thu Apr 16 14:56:55 2009] [error] [client 10.*****] client denied by server
> configuration: /apps/apache/htdocs/svn/sysadmins
you need to address that in httpd.conf
look for line
deny from all
> /apps/apache/htdocs is the global server docroot, but the <location> block
> should pre-empt that, I thought. Any words of wisdom?
> (Server is apache 2.0.52 on RedHat 4.x
>
> thanks
> --
> Aaron Macks
> Sr. Unix Systems Engineer
>
> Harvard Business Publishing
> 300 North Beacon St. | Watertown, MA 02472
> (617) 783-7461 | Fax: (617) 783-7467
> www.harvardbusiness.org
>
> ------------------------------------------------------
> http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=1752736
>
> To unsubscribe from this discussion, e-mail: [users-unsubscribe@subversion.tigris.org].
>
make sure you have neon
--
http://alexus.org/
------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=1753173
To unsubscribe from this discussion, e-mail: [users-unsubscribe@subversion.tigris.org].