You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@subversion.apache.org by Sebastian Kotthoff <se...@rz.uni-mannheim.de> on 2010/05/12 18:01:00 UTC
using saslauthd for user authendication
Hello,
I have a working LDAP-Server and some svn-repositories on an second server.
The svnserv uses the "passwd" file at the moment for user authendication.
Now I like to to use the LDAP instead.
Because the handbook says, svnserv could be used with sasl to access
a LDAP-server, I have set up a "saslauthd" on the svn-server.
The saslauthd asks the LDAP over SSL if the given user is in a svn-group.
This is working fine so far, I can check this with:
# sudo /usr/sbin/testsaslauthd -u USERNAME -p PASSWORD
whitch returns either
0: OK "Success." or 0: NO "authentication failed"
Now I have set up a "/usr/lib/sasl2/svn.conf", but I'm not shure,
what to fill in. The lines from the svnhandbook are redirecting to a
"/etc/sasldb2", which I have. But I don't want to use a database-file,
the svnserv should request the localy running saslauthd.
It is possible to do something like that, or are I comlpetely misunderstood
the svnserver sasl-support?
(A further point is, that "svnserve --version" on ubuntu 8.04 does not return
something like "sasl", so it seems that I anyway need to compile it my own.)
Thank you in advance very much!
Regards
Sebastian
--
Sebastian Kotthoff
Rechenzentrum
Universität Mannheim
B6, 23-29; Building B; Room 1.16
68159 Mannheim
Tel: +49 621 181 2516
Fax: +49 621 181 2682
Re: using saslauthd for user authendication
Posted by Johan Corveleyn <jc...@gmail.com>.
On Wed, May 12, 2010 at 6:01 PM, Sebastian Kotthoff
<se...@rz.uni-mannheim.de> wrote:
> Hello,
>
> I have a working LDAP-Server and some svn-repositories on an second server.
> The svnserv uses the "passwd" file at the moment for user authendication.
> Now I like to to use the LDAP instead.
> Because the handbook says, svnserv could be used with sasl to access
> a LDAP-server, I have set up a "saslauthd" on the svn-server.
> The saslauthd asks the LDAP over SSL if the given user is in a svn-group.
>
> This is working fine so far, I can check this with:
> # sudo /usr/sbin/testsaslauthd -u USERNAME -p PASSWORD
> whitch returns either
> 0: OK "Success." or 0: NO "authentication failed"
>
> Now I have set up a "/usr/lib/sasl2/svn.conf", but I'm not shure,
> what to fill in. The lines from the svnhandbook are redirecting to a
> "/etc/sasldb2", which I have. But I don't want to use a database-file,
> the svnserv should request the localy running saslauthd.
>
> It is possible to do something like that, or are I comlpetely misunderstood
> the svnserver sasl-support?
>
> (A further point is, that "svnserve --version" on ubuntu 8.04 does not return
> something like "sasl", so it seems that I anyway need to compile it my own.)
>
> Thank you in advance very much!
The following recent thread from this mailinglist may help you:
http://svn.haxx.se/users/archive-2010-03/0515.shtml
The discussion eventually resulted in a working setup of svnserve + SASL + LDAP.
Cheers,
--
Johan