You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@subversion.apache.org by Tobias Sager <mo...@gmx.ch> on 2006/09/16 21:40:45 UTC
AuthzSVNAccessFile: character not allowed
Hi all,
after upgrading from subversion 1.3.2 to 1.4.0 on my gentoo box, my
AuthzSVNAccessFile stopped working.
When accessing the repository through dav in apache 2.0.58 over ssl, I
get a 403 (forbidden) and this error message in my apache log:
<snip>
[Sat Sep 16 22:40:48 2006] [error] [client 192.168.11.1] Failed to load
the AuthzSVNAccessFile: The character 'm' in rule 'ssl-authority-files'
is not allowed in authz rules
[Sat Sep 16 22:40:48 2006] [error] [client 192.168.11.1] Access denied:
'foo' GET repos:/
</snip>
My access file looks like this:
<snip>
[global]
ssl-trust-default-ca = true
ssl-authority-files = /var/svn/conf/cacert3.pem
...
</snip>
As soon as I remove the two ssl-* lines, the installation works fine
again. Intrestingly enough the error message always declares the last
character on the last configuration line of the global section as
invalid (that is 'e' when I remove the ssl-authority-files line for
example).
Did I miss anything in the upgrade process? Did the configuration change?
Thanks,
Tobias
--
GPG-Key 0xEF37FF28 - 1024/4096 DSA/ELG-E - 16.11.2001
Fingerprint: 3C4B 155F 2621 CEAF D3A6 0CCB 937C 9597 EF37 FF28
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Re: AuthzSVNAccessFile: character not allowed
Posted by Garrett Rooney <ro...@electricjellyfish.net>.
On 9/16/06, Tobias Sager <mo...@gmx.ch> wrote:
> Hi all,
>
> after upgrading from subversion 1.3.2 to 1.4.0 on my gentoo box, my
> AuthzSVNAccessFile stopped working.
>
> When accessing the repository through dav in apache 2.0.58 over ssl, I
> get a 403 (forbidden) and this error message in my apache log:
> <snip>
> [Sat Sep 16 22:40:48 2006] [error] [client 192.168.11.1] Failed to load
> the AuthzSVNAccessFile: The character 'm' in rule 'ssl-authority-files'
> is not allowed in authz rules
> [Sat Sep 16 22:40:48 2006] [error] [client 192.168.11.1] Access denied:
> 'foo' GET repos:/
> </snip>
>
> My access file looks like this:
> <snip>
> [global]
> ssl-trust-default-ca = true
> ssl-authority-files = /var/svn/conf/cacert3.pem
> ...
> </snip>
>
> As soon as I remove the two ssl-* lines, the installation works fine
> again. Intrestingly enough the error message always declares the last
> character on the last configuration line of the global section as
> invalid (that is 'e' when I remove the ssl-authority-files line for
> example).
>
> Did I miss anything in the upgrade process? Did the configuration change?
The SVNAuthzAccessFile has never taken directives like
ssl-trust-default-ca or ssl-authority-files, those are from the
per-user ~/.subversion/servers file. You're getting an error now
because mod_authz_svn got more strict about parsing config files, and
now complains if it sees something on the right side of the = sign
that it doesn't understand.
-garrett
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org