You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@subversion.apache.org by Ryan Schmidt <su...@ryandesign.com> on 2009/04/01 23:54:45 UTC

Re: SVN appache configuration.

On Mar 31, 2009, at 14:13, hessiess@hessiess.com wrote:

> I have managed to get SVN working with Apache and HTTPS, by  
> folowing the
> guide located at
> http://www.geocities.com/arhuaco/doc/subversion/apache-subversion- 
> in-debian.html
> (Im using Ubuntu).
>
> however the repository is also available using plain HTTP. Is there  
> any
> way to make SVN available only over HTTPS without disabling  
> listening on
> port 80?

Looking over those instructions briefly, it looks like their  
instructions state that you should put the <Location /svn/src> block  
inside the <VirtualHost *:443> block. This will cause the repository  
to only be available over https.

> Also, if a browser is pointed at the svn repository's url it is  
> visible
> over the web, even though it is password protected, I would prefer  
> it if
> this was not possible.

Again, looking briefly at their instructions, their <Location> block  
includes the directive "Require valid-user". This will cause a  
password to be required.

You may also wish to read the official documentation available at:

http://svnbook.org/

------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=1511934

To unsubscribe from this discussion, e-mail: [users-unsubscribe@subversion.tigris.org].

Re: SVN appache configuration.

Posted by Craig McQueen <ce...@mcqueen.id.au>.

Ryan Schmidt wrote:
> On Mar 31, 2009, at 14:13, hessiess@hessiess.com wrote:
>
>   
>> I have managed to get SVN working with Apache and HTTPS, by  
>> folowing the
>> guide located at
>> http://www.geocities.com/arhuaco/doc/subversion/apache-subversion- 
>> in-debian.html
>> (Im using Ubuntu).
>>
>> however the repository is also available using plain HTTP. Is there  
>> any
>> way to make SVN available only over HTTPS without disabling  
>> listening on
>> port 80?
>>     
>
> Looking over those instructions briefly, it looks like their  
> instructions state that you should put the <Location /svn/src> block  
> inside the <VirtualHost *:443> block. This will cause the repository  
> to only be available over https.
>
>
>   
>> Also, if a browser is pointed at the svn repository's url it is  
>> visible
>> over the web, even though it is password protected, I would prefer  
>> it if
>> this was not possible.
>>     
>
> Again, looking briefly at their instructions, their <Location> block  
> includes the directive "Require valid-user". This will cause a  
> password to be required.
>
> You may also wish to read the official documentation available at:
>
> http://svnbook.org/
>
>
>   
There is also this Apache directive:

SSLRequireSSL


I recommend these TortoiseSVN docs as a useful resource for configuring SVN:
http://tortoisesvn.net/docs/nightly/TortoiseSVN_en/help-onepage.html#tsvn-serversetup-apache

Regards,
Craig McQueen

------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=1513418

To unsubscribe from this discussion, e-mail: [users-unsubscribe@subversion.tigris.org].

Re: SVN appache configuration.

Posted by Corey Shaw <cs...@q90.com>.

You can always create a virtual host that listens on port 80 that simply redirects to port 443: 



<VirtualHost *:80> 
ServerName svn.example.com 
Redirect / https://svn.example.com/ permanent 
</VirtualHost> 


<VirtualHost *:443> 
ServerName svn.example.com 

.... Virtual Host SSL settings 



</VirtualHost> 


I currently use this on my company's SVN repository. 




_____________________ 
Corey 
----- Original Message ----- 
From: "Ryan Schmidt" <su...@ryandesign.com> 
To: hessiess@hessiess.com 
Cc: users@subversion.tigris.org 
Sent: Wednesday, April 1, 2009 5:54:45 PM GMT -07:00 US/Canada Mountain 
Subject: Re: SVN appache configuration. 

On Mar 31, 2009, at 14:13, hessiess@hessiess.com wrote: 

> I have managed to get SVN working with Apache and HTTPS, by 
> folowing the 
> guide located at 
> http://www.geocities.com/arhuaco/doc/subversion/apache-subversion- 
> in-debian.html 
> (Im using Ubuntu). 
> 
> however the repository is also available using plain HTTP. Is there 
> any 
> way to make SVN available only over HTTPS without disabling 
> listening on 
> port 80? 

Looking over those instructions briefly, it looks like their 
instructions state that you should put the <Location /svn/src> block 
inside the <VirtualHost *:443> block. This will cause the repository 
to only be available over https. 


> Also, if a browser is pointed at the svn repository's url it is 
> visible 
> over the web, even though it is password protected, I would prefer 
> it if 
> this was not possible. 

Again, looking briefly at their instructions, their <Location> block 
includes the directive "Require valid-user". This will cause a 
password to be required. 

You may also wish to read the official documentation available at: 

http://svnbook.org/ 

------------------------------------------------------ 
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=1511934 

To unsubscribe from this discussion, e-mail: [users-unsubscribe@subversion.tigris.org].

------------------------------------------------------
http://subversion.tigris.org/ds/viewMessage.do?dsForumId=1065&dsMessageId=1513184

To unsubscribe from this discussion, e-mail: [users-unsubscribe@subversion.tigris.org].